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02/26/2002 08:11 PM b7c -1,2 


To: 
ce: 


Subject: NYT Hacker Article just posted -- 


http://online.securityfocus.com/news/342NEWS 
New York Times Internal Network Hacked 


How open proxies and default passwords led to Adrian Lamo padding his rolodex with 
| information on 3,000 
op-ed writers, from William F. Buckley Jr. to Jimmy Carter. 


By Kevin Poulsen 
Feb 26 2002 4:15PM PT 


Security holes in the New York Times internal network left sensitive databases exposed to 
hackers, including a file 
containing social security numbers and home phone numbers for contributors to the Times op-ed 
page, SecurityFocus : 

Online has learned. 


In a two-minute scan performed on a whim, twenty-one-year-old hacker and sometimes-security 
consultant Adrian Lamo . 

discovered no less than seven misconfigured proxy servers acting as doorways between the 
public Internet and the 

Times' private intranet, making the latter accessible to anyone capable of properly configuring 
their Web browser. s 


“The very first server | looked at was running an open proxy," says Lamo. “The server 
practically approached me." 


Once on the newspaper's network, Lame exploited weaknesses in the Times password 
policies to broaden his access, eventually browsing such disparate information as the 
names and social security numbers of the paper's employees, logs of home delivery 
customers’ stop and start orders, instructions and computer dial-ups for stringers to file 
stories, lists of contacts used by the Metro and Business desks, and the “WireWatch" 
keywords particular reporters had selected for monitoring wire services. 


But measured by sheer star power, the hack is most notable for Lamo's access to a 
database of 3,000 contributors to the Times op-ed page, the august soap box of the 
cultural elite and politically powerful. 


The roster includes social security numbers for former U.N. weapons inspector Richard Butler, 
Democratic operative 

James Carville, ex-NSA chief Bobby Inman, Nannygate veteran Zoe Baird, former secretary of 
state James Baker, 


FBI(19-cv-1495)-1607 


Internet policy thinker Larry Lessig, and thespian activist Robert Redford, who last May authored 
an op-ed on President e 
Bush's environmental policies. 


Entries with home telephone numbers include Lawrence Walsh, William F, Buckley Jr., Jeanne 
Kirkpatrick, Rush : . 
Limbaugh, Vint Cerf, Warren Beatty and former president Jimmy Carter. 


The database includes details on contributors’ areas of expertise and what books they've written, 
and the odd note on 
how easily they succumb to editing or how much they were paid. 


Lamo notified the Times of the vulnerabilities Tuesday through a reporter, and provided them 
with a list of the open 

proxies. In a statement, a spokesperson for the paper said the Times takes security “very 
seriously.” 


“We are actively investigating a potential security breach,” wrote Times spokesperson Christine 
Mohan. "Based on the 
results of this investigation we will take appropriate steps to ensure the security of our network." 


Hacker's Helpful History 

Adrian Lamo has built an unusual reputation exposing security holes at large corporations, then 
voluntarily helping them 

fix the vulnerabilities he exptcited -- sometimes visiting their offices or signing non-disclosure 
agreements in the process. 


In December, Lamo was praised by communications giant WorldCom after he discovered, then 
helped close, security 

holes in their intranet that threatened to expose the private networks of Bank of America, 
CitiCorp, JP Morgan, and 

others. 


{in September, the hacker used a vulnerable Web-based production tool to tamper with a wire 
service story on Yahoo! 
News, deliberately choosing an old story to minimize the impact. 


The hacker professes relief at discovering that the Times intranet afforded him no similar 
opportunity to modify stories in 

the paper's print edition, without clearing human hurdles in the Times editorial process. "it's 
really better for everybody if 

the New York Times has the ability to runs something unusually every now and then without 
people checking it for my 

writing style," says Lamo. 


The newspaper's public Web site -- the target of a high-profile defacement in 1998 -- is 
outsourced, and wasn't affected 
by the vuinerabilities. 


Privacy Concerns 

Lamo says he began his excursion at a proxy in the Times home delivery department and 
scanned the newspaper's IP 

address range for Web servers. “The proxy was on a different network, dealing with 
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management of subscription 

information, but it was trusted by their internal network," says Lamo. He quickly found the 
intranet homepage, and an 

unprotected copy of a database that cataloged employees’ names and social security numbers. 
“From what I've been 

able to tell, it was a backup database being used for research." 


Armed with that information, the hacker could use the intranet account of any employee that 
hadn't changed their 

password from the default -- the last four digits of the person's social security number. One of 
those belonged to a 

worker that had the power to create new accounts, so Lamo set up his own account on the 
network with higher 

privileges. 


From there, it was a short hop to the op-ed database. 


"This is sort of a situation where security and privacy intersect," says David Sobel, an attorney 
with the Electronic 

Privacy Information Center {EPIC}. “One of the concerns with the online availability of personal 
information is the lack of 

security that often surrounds those kinds of systems... There's an ethical obligation to protect 
this data, given the harm 

that can result in the form of identity theft from obtaining a social security number." 


This isn't the first time personal information on the rich and powerful has been compromised by 
weak network security. 

One year ago, anti-globalization hackers penetrated a database maintained by the World 
Economic Forum, and 

downloaded similar data on attendees of the group's summit on global economic trends in 
Davos, Switzerland, including 

Bill Gates, Bil! Clinton, South African President Thabo Mbeki and Japanese Prime Minister 
Yoshiro Mori. 


But with the Times hack Lamo may have gone one better. Rather than merely crossing the 
information wake left by the 

elite, Lamo says he actually joined their ranks, creating his own entry in the 'L' section of the 
Times database, complete 

with his real name, cell phone number, and email address. 


In the space set aside for a description of the contributor’s expertise, Lamo wrote, "Computer 


hacking, national security, 
sommunications intelligence." 
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02/27/2002 10:56 AM b7c -1,2 


To: 
ce: 
Subject: Hacker said he did this 10 days ago 


Adrian Lamo (or Lam-o for short) told an AP reporter that he hacked our intranet 10 days ago... 


and FYI: Adrian called the NYC bureau of AP last nite. They couldn't reach us to confirm {?} so 
they didn't file a story. Sounds like he's doing a bit of PR himself... 
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03/04/2002 10:12 AM 


To: 
co: 


Subject: chats on Security Focus article 


New York Times Internal Network Hacked 
by Toybreaker 
Feb 27 2002 11:25PM 


Lamo, nice work and way to keep everything on the up and up. Not many Hackers seem to have 
his ethics. | 
. 4m curious if he is given any $$ for exposing these holes to the companies and not telling the 
world before 

fixes can be made. if 1 was head of of NYT I would be more than willing to cut him a fat check 
for his efforts. 

He has my respect =*} 


New York Times Internal Network Hacked 
by Anonymous 
Feb 28 2002 5:42AM 


What is this?? What is the story here? A network gets "hacked" or more accurately broken into 
by an 3 
attacker that uses a misconfigured proxy. Suprise, suprise internal corporate network security is 
not exactly 

what it should be, Stop the presses, we got the sccop of the century! A network with poor user 
passwords! 


Script kiddie does not put his tag on the web site but media gives him the much wanted 
attention for being an 

“ethical hacker" Many defacement groups also offer their help to the sysadmin, do you also 
consider them to 

be heroic whitehat security experts ? I did not think so... The only thing “hacked" here is the 
media. 


Who wrote the story? John Markoff ? 
New York Times Internal Network Hacked 

by Anonymous 

Feb 28 2002 7:41AM 

Just a brief comment. 

“Lamo notified the Times of the vulnerabilities Tuesday through a reporter, and provided them 
with a list of 


the open proxies." 


Why does this humble servant of all that is good and super whitehat; hacker involve a 
reporter before talking to the NY Times? Is he seeking attention? Does he want to have his name 
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03/08/2002 12:19 PM b7c -1,2 


To: 
ce: 


Subject: Tech TV press query -- they heard rumor we are prosecuting Lamo 


The reporter said they had heard a rumor that we were moving forward with prosecuting Lama. 


I gave our standard statement that we were investigating all our options to determine what our next 
steps would be. That we hadn't finalized that decision yet. 


Tech TV is a (shrinking) cable TV outlet, based in San Fran, that covers tech news...shouldn't be 
much pickup but you never know. 


Looks like it will be part of tonight's show - below is the description on their site. 1 called to ask 
them to correct the reference to the NYT Web site (should by NYT Company's intranet site) and let 
her know that it was not information about subscribers that was allegedly accessed. She is going 
to change that reference to Op-Ed columnists per earlier reports/coverage. 


Friday on ‘Tech Live’ 
March 7, 2002 
Homeless Hacker 
: The infamous homeless hacker, Adrian Lamo recently hacked into the New 

York Times website 

and snagged private information on some big-time subscribers. While the 
Times is considering P 

pressing charges, he says he is hacking to warn companies about security 
holes. Is what 

Adrian is doing illegal? 


P.S. They are sending me a videotape of this show. 
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TACT . b6 -l , 2 ; 5 
03/25/2002 03:09 PM b7C -1,2,5 


To: 


ect 


Subject: [7 ___Falled to get hacker update 


hacking the NYT intranet. 


He asked for an update, wanted to know if we would be reporting the hacker incident as a crime to 
the FBI. 


(said that we were still investigating all the options to determine what our next steps would be, and 
confirmed that yes, reporting it to the FB] was one of the options. 


CH track for his article. 


Ld 
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New York Times Internal Network 
Hacked 


How open proxies and default passwords led to Adrian Lamo padding his 
tolodex with information on 3,000 op-ed writers, from William F. Buckley 
dr. to Jimmy Carter, 

By Kevin Poulsen 

Feb 26 1980 4:15PM PT 


Security holes in the New York Times internal network left sensitive databases 
exposed to hackers, including a file containing Social Security numbers and 
home phone numbers for contributors to the Times op-ed page, SecurityFocus 
Online has learned. 


In a two-minute scan performed on a whim, twenty-one-year-old hacker and 
sometimes-security consultant Adrian Lamo discovered no less than seven 
misconfigured proxy servers acting as doorways between the public Internet 
and the Times' private intranet, making the latter accessible to anyone capable 
of properly configuring their Web browser. 


"The very first server | looked at was running an 
open proxy," says Lamo. “The server practically 
approached me." 


Once on the newspaper's network, Lamo 
exploited weaknesses in the Times password 
policies to broaden his access, eventually 
browsing such disparate information as the 
names and Social Security numbers of the . 
paper's employees, logs of home delivery 
customers’ stop and start orders, instructions and computer dia!-ups for 
stringers to file stories, lists of contacts used by the Metro and Business desks, 
and the "WireWatch" keywords particular reporters had selected for monitoring 
wire services. 


_—— a 
Adcian Lamo does most af his hacking 
‘aith an ordinary Web brovwier, 


But measured by sheer star power, the hack is most notable for Lamo's access 
to a database of 3,000 contributors to the Times op-ed page, the august soap 
box of the cultural elite and politically powerful. 


The roster includes Social Security numbers for former U.N. weapons inspector 
Richard Butler, Democratic operative James Carville, ex-NSA chief Bobby 
Inman, Nannygate veteran Zoe Baird, former secretary of state James Baker, 
Internet policy thinker Larry Lessig, and thespian activist Robert Redford, who 
Jast May authored an op-ed on President Bush's environmental policies. 


Fniries with home telenhone numbers include | awrence Walsh. William F. 


http://online.security focus.com/news/342 
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SecurityFocus home news: New York 


6 Internal Network Hacked 


of the‘concerns with the online avatiapiiity ot personal intormation Is the lack of 
security that often surrounds those kinds of systems... There's an ethical 
obligation to protect this data, given the harm that can result in the form of 
identity theft from obtaining a Social Security number." 


This isn’t the first time personal information on the rich and powerful has been 
compromised by weak network security. One year ago, anti-globalization 
hackers penetrated a database maintained by the World Economic Forum, and 
downloaded similar data on attendees of the group's summit on global 
economic trends in Davos, Switzerland, including Bill Gates, Bill Clinton, South 
African President Thabo Mbeki and Japanese Prime Minister Yoshiro Mori. 


But with the Times hack Lamo may have gone one better. Rather than merely 
crossing the information wake left by the elite, Lamo says he actually joined 
their ranks, creating his own entry in the 'L' section of the Times database, 
complete with his real name, cell phone number, and email address. 


In the space set aside for a description of the contributor's expertise, Lamo 
wrote, “Computer hacking, national security, communications intelligence." 


<tips@securityfocus.com> 


Discussion 
[ Post a comment ] 


Privacy Statement 
Copyright © 1999-2001 SecurityFocus 


http://online.securityfocus.com/news/342 


Page 3 of 3 
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New York Times Intranet, Source ~~ Hacked e Page 2 of 2 


Lame gained access to the network using Web proxies located on the network, Proxies are machines that 
allows users to route through - or into ~ networks, often skirting past firewalls. The whole process from 
search to discovery took less than two minutes. 


“It struck me as being a part of their network more likely to be placed in a trusted location,” he said. 
“Ironically, jt wasn't until I mistyped a URL that I found what I was looking for - the error message invited 
me to ‘try the main New York Times intranet site’ instead." 


The Times' corporate intranet also allows users to access other sensitive areas, including the company's 
human resources department, as well as tools used to submit advertisements that accompany stories in 
the daily paper and the New York Times Web site, http://www.nytimes.com . 


The discovery highlights just how susceptible the Internet can be as a tool for spreading misinformation. 
Lamo said had he been so inclined, he probably would have been able to figure out how to successfully 
submit a small news item or advertisement for publication. 


Days after the Sept. 11 attacks, Lamo used a proxy on the Yahoo network to add satirical comment to a 
story on the company's Web site about Russian programmer Dmitry Sklyarov, a stunt that raised public 
concern about the integrity of online media. 


Last week, Lamo alerted SBC Communications that several of its Web pages containing tens of thousands 
of subscriber user names and passwords were exposed to the Web and completely unprotected. 


In December, Lamo discovered an Internet-accessible Web too! that provided easy access to the keys to 
private network routers for dozens of companies, including AOL Time Warner, Bank of America, Citicorp, 
Fox News Corp., JP Morgan, McDonalds, and Sun Microsystems - to name just a few. 


When asked why he does what he does, Lamo is noncommittal and somewhat cagey, downplaying his 
penchant for seeing things in ways that often go unnoticed by most. - 


That didn’t stop him, however, from quietly adding his name to the newsroom's source list as an expert on 
computer hacking. . 


“I'm not trying to bring about any sort of specific change anywhere by what I do - but in doing what I do, 

acting in goad faith doesn't seem like a bad thing, and hoping that someone in a similar situation in some 
undefined future might have options that aren't all a downwards spiral doesn't seem unreasonable either,” 
Lame said, “It would be nice." 


Reported by Newsbytes.com, http://www.newsbytes.com 


19:52 CST 
Reposted 08:23 CST 


(20020227/WIRES ONLINE, LEGAL, BUSINESS, TELECOM/NYTIMES/PHOTO) 


© 2001 The Washington Post Company 


FBI(19-cv-1495)-1616. 
http://www newsbytes.com/cgi-bin/udt/im.display.printable?client.id=newsbytes&story.id=174792 2/27/02 


UN. Y. Limes sources database hacked 


(i icant mention of NYTCO- = positive 
2 = passing mention of NYTCO i negative 
3 =industy article =neutral, | 
be -1 


b7C - 
Ek ‘ 


' 
| Gat up fo the minute ce 


is 


BREAKING NEWS 


Adverlisement 


Soa ara Ze 


N.Y. Times source database hacked 


Paper’s rich-and-famous op-ed, source database revealed 


By Bob Sullivan 
MSNBC 
Feb.27—A computer security researcher © $49.08 
accessed internal New York Times computer ore Anteviru 
networks this week through the Internet and — 
managed to view hundreds of sensitive Times ” 
Team, files. Among them: a database of 3,000 Times uBid.con 
Tsien | op-ed page contributors. The file contained 
3 Social Security numbers and other personal 
owetde~é information belonging to luminaries like James 
cnvewsiovesess, Carville, James Baker, Larry Lessig, and Robert 
“= Redford, The researcher also got phone numbers 
for William F. Buckley Jr., Rush Limbaugh, 
Warren Beatty and Jimmy Carter. Ina 
statement , the New York Times said it is 
investigating the problem. 
% E-MAIL THIS BR] BCOMPLETE STORY "> 
ADVERTISING ON MSNA 
Sponsored by sharesuioer” Rid erexsouse 
| Sacat 
, ea 
| ae 
http.//www.msnbc.com/news/716753.asp 212102 
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information belonging to Times’ employees and i 
customers. : 
. “This surely wasn’t anything the people involved 
had counted on when they’d been filling out that tell-us- 
about-yourself account form,” he said. 
Lamo, a 21-year-old nomad who is among the few “ 
computer researchers that use their real name when 
informing a company about a security problem, said he 
generally does his work to improve the state of 
computer security at large companies. His 
unconventional tactics are frequently criticized, he says. mer 
“T recognize that some people will see my actions 2 
as illegal, immoral, or worse. It’s not for me to contest 
them or try to win them over to the Adrian Lamo 
School of Security,” he said. “I’ve done my best to act 
in good faith and avoid harm to the company and 
employees involved.” 
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New York Times internal Web site hacked 
Last Updated: February 27, 2002 11:44 AM ET : 1} print This article 


NEW YORK, Feb 27 (Reuters) - New York Times Co. NY'T.N said on Wednesday it was investigating a 
security breach of its internal corporate Web site, but said that security flaw has been fixed. 


The company was notified on Tuesday about the breach of its internal Web site, which includes company 
presentations by management, internal memos and other company information, spokeswoman Christine Mohan 
told Reuters. 


"We identified the security flaw and addressed it, and are continuing to investigate the situation to ensure the 
security of our network," she said. 


The company was still looking into who committed the breach, how it occurred and what information was 
accessed, she added. 


S Copyright Reuters 2001. All rights reserved. Any copying, re-publication or re-distribution of Reuters content or of any content used on this site, 
including by framing or similar means, is expressly prohibited without prior written consent of Reuters. 


Quotes and other data are provided for your personal information only, and are not intended for trading purposes. Reuters, the members of its Group 1 
and its data providers shail not be liable for any errors or delays in the quotes or other data, or for any actions taken in reliance thereon. 


© Reuters 2001, All rights reserved, Republication or redistribution of Reuters content, including by caching, framing or similar means, is expressly 
prohibited without the prior written consent of Reuters. Reuters and the Reuters sphere logo are registered trademarks and trademarks of the Reuters 
group of companies around the world. ‘ : 


www.reuters.com REUTERS 2 


http://www reuters.con/printerfriendly jhtml?type=search&StoryID=641529 2/27/02 
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AtNewYork 


Back to http://www.atnewyork.com/news/article/0,,8471_982161,00.htm] 


NY Times Internal Network Hacked 


By Ryan Naraine 


The New York Times on Wednesday confirmed a computer hacker broke into its internal 
network, accessing files and folders containing personal information of some of its biggest 
op-ed contributors, 


Acting on a whim, 21-year-old California hacker Adrian Lamo found seven misconfigured 
proxy servers that served as doorways between the Internet and the company’s private 
intranet. 


Once he got in, Lamo breached weaknesses in the password policies of the New York Times 
to expand his access to a database of op-ed contributors, which included social security 
numbers of people like former U.N weapons inspector Richard Butler, former Clinton aide ’ 
James Carville, radio personality Rush Limbaugh, Microsoft kingpin Bill Gates, and New 
York City mayor Mike Bloomberg. 


New York Times spokeswoman Christine Mohan confirmed the breach and said an active 
investigation was underway. "The New York Times Company takes the security of its 
network very seriously...We will take appropriate steps if necessary to ensure the security of 
our network,” she told atNewYork. 


Mohan said the company had not contacted Lamo or had not yet identified the source of the 
intrusion although it is widely known that the hacker immediately contacted the media 


company with the help of a journalist from SecurityFocus Online Web site, which first 
reported the story. 


It is the second time the Times has been the target of hackers. In 1998, a group known as 
“Hacking for Girlies" (HFG) defaced the company's flagship NYTimes.com site with 
profanities and racial rants which targeted reporter John Markoff, who authored 
"TakeDown," a book on the search for convicted hacker Kevin Mitnick. 


Although the latest breach happened behind the scenes, it highlights the potential security 
nightmares facing companies that do business on the Internet. : 


Lamo, who gained notoriety last year after breaching the systems of Yahoo!, Microsoft ISP 
WorldCom, said he was surprised at the ease in which he got access into the Times' 
database. 


http://www.atnewyork.com/news/print/0,,847 1_982161,00.html 
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February 28, 2002 ~~ Ail the news that's fit to hack 


INTIMATE information about celebrity contributors to the New York Times op-ed page was 
exposed after a 21-year-old hacker broke into the paper's computer system. 


it only took two minutes for security consultant Adrian Lamo to infiltrate the Times’ internal 
network and get private poop on the likes of Robert Redford, Warren Beatty, Jimmy Carter, 
William F. Buckley Jr., Rush Limbaugh, James Carville, James Baker and Jeanne 
Kirkpatrick. 


Lamo accessed a database of 3,000 contributors to the Times’ opinion page that listed social 
security numbers, home telephone numbers, notes about how they feel about being edited, and how 
much they get paid. 


He also accessed the names and social security numbers of all Times employees, lists of contacts 
used by the metro and business desks and logs of home delivery customers' start-and-stop orders. 


"The server practically approached me," Lamo bragged to SecurityFocus.com. The crafty computer 
whiz discovered seven servers acting as doorways between the public Internet and the Times' 
private intranet, making the information available to anyone capable of properly configuring a Web 
browser. 


Lamo notified the Times of its porous database on Tuesday. In a statement, a red-faced Times 
spokesperson said: "We are actively investigating a potential security breach. Based on the results 
of this investigation we will take appropriate steps to ensure the security of our network." 


Lamo has earned a reputation for hacking into the networks of large corporations, alerting the 
companies and offering to fix their vulnerabilities - for a price. 


In December, he was praised by communications monolith WorldCom after he discoveréd - and 
helped fix - gaping holes in its intranet that threatened to expose the private networks of Bank of 
America, Citicorp and J.P. Morgan. 


A few months earlier, he had shown how easy it was to hack into a Yahoo! News Web site by 
tampering with a wire service story posted on the site. At least Lamo was unable to tinker with 
Times stories before they got into print. The paper's Web site is not tied in to its Swiss cheese-like 
internal computer system. 


Last year, anti-globalization activists hacked into a World Economic Forum database and 
downloaded details about Bill Clinton, Bill Gates, South African President Thabo Mbeki and 
Japanese Prime Minister Yoshiro Moki, all attendees of the group's summit in Davos, Switzerland. 
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New York Times Hack Exposes High-Profile 
Data 


day Lyman 
February 28, 2002 


corporate intranet -- which reportedly contains 
personal data on such high-profile op-ed 
contributors as former president Jimmy Carter, 
activist actors Warren Beatty and Robert Redford, 
and Internet gurus Vint Cerf and Larry Lessig -- 
was hacked earlier this week. 


The New York Times repeatedly has Ne breach, achieved by a well-known benevolent 
been the target of computer security hacker named Adrian Lamo, reportedly came via 
exploits, including a 1898 breach that _jll-configured proxy servers that led from the 
‘esuited in defacement ofits Web site. Internet to the Times’ intranet. That intranet 
includes the names and social security numbers of the company's employees, 
logs of home delivery orders, instructions for Times reporters and contact lists, 
among other sensitive data. 


Please note that this material is copyright protected. Therefore, it is illegal to 
display or reproduce this article for any commercial purpose, including use as 
marketing or public relations literature. To obtain legal reprints of this article, 
please call a sales representative at +1 (818) 528-1100 or visit 

http:/Avww_ newsfactor.com/reprints.shtml. 


The Times said it has closed the security gaps and is investigating the breach, 
which is the latest of many exploits undertaken against the media giant. 


Hacker Heads-Up 


New York Times spokesperson Christine Mohan told NewsFactor that the 
company was notified Tuesday that there might be a security breach of its 
corporate intranet. 


“We did confirm that there had been one," she said. "We did identify the security 
flaws, and then we did secure them.” 


Mohan said the paper received a call from network security firm SecurityFocus, 
which had been contacted by Lamo, alerting the Times to the security breach. 


Assessing Next Steps 


Mohan said the Times is not currently focused on the source of the security 
breach. She would not comment about whether the company is grateful that it 
was Lamo who hacked its internal network rather than a less benevolent hacker. 


“Right now, we are focused on the situation at hand and on securing the 
information network," Mohan said. "We really aren't focused now on confirming 
the identity of this person. 
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By Robert Lemos and Margaret Kane) HEREIN 1S 
Staff Writers, CNET News.com TATE 02 
February 27, 2002, 12:30 PM PT 


update Adrian Lamo--the curious hacker who has hit such high-profile companies as 
Yahoo, Microsoft-and Excite@Home--has struck again, this time gaining access to The 
New York Times’ internal operations network. 


In an e-mail interview Wednesday with CNET News.com, Lamo described the attack, saying 
he viewed employee records--including Social Security numbers--and accessed the contact 
information for the paper's sources and columnists, including such well-known contributors as 
former U.S. President Jimmy Carter, former Marine Col. Oliver North and hip-hop artist 
Queen Latifah. 


Lamo even added himself as a contact as a “computer hacking, national security and 
communications intelligence" specialist. 


“This raises some questions about their handling of the data the company receives," Lamo 
said. “But in terms of the overall impact on the Times, it's an order of magnitude less than it 
could have been if people had been able to alter content" on the newspaper's public Web 
site, NYTimes.com. 


On Wednesday, the publishing giant confirmed that the security of the internal network of its 
flagship newspaper had been breached. New York Times Co. spokeswoman Christine 
Mohan said the newspaper had addressed the security flaws, though it is still trying to 
determine what information was accessed and when the intrusion took place. 


The security breach is the latest by Lamo, whose hack-and-tell exploits include breaking into 
WorldCom in December, Microsoft in October, Yahoo in September and Excite@Home in 
May. 


Although Lamo's activities are well known, his intrusions have not resulted in any charges 
being filed against him. In every case, he has convinced targets that his intentions are good, 
notifying companies of breaches before going public. His targets have not necessarily 
weicomed the bad news, but his actions have allowed them to bolster their security. 


The New York Times Co. would not say whether it is considering prosecuting Lamo. “Right 
now, we are focusing on investigating the situation,” said Mohan. "We are determining what 
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Hacker Adds New York Times To Long List Of Targets 


A 21-year-old hacker gains access to the newspaper's corporate intranet and its source database. It's 
the latest in a long list of companies whose security problems have been exposed by hacker Adrian 
Lamo. 


By George V. Hulme, InformationWeek 
Feb 27, 2002 (12:00 AM) 


URL: http://www informationweek.com/story/IWK2002022780003 


Adrian Lamo, a homeless 21-year-old literary buff who likes to quote Ayn Rand and H.P. Lovecraft, uses an old 
Toshiba notebook to expose security weaknesses at companies such as Microsoft, Yahoo, AOL, and 
“Excite@Home. He won't explain why he does what he does, but he says hacking is his nature. 


in December, the part-time security and communications consultant struck WorldCom and gained access to 
information about the communication company's clients, including AOL Time Warner, Bank of America, 
Citicorp, News Corp., J.P. Morgan, McDonald's, and Sun Microsystems. And Tuesday, he informed the New 
York Times, through a reporter at SecurityFocus, that he had hacked into its corporate intranet, gaining access to 
employees’ Social Security numbers and a source database that lists the phone numbers of the rich and powerful, 
including Rush Limbaugh, Jeanne Kirkpatrick, Jimmy Carter, and James Baker. Lamo says that for more than a 
week he had access to the personnel records of about 3,000 New York Times employees. 


A Times spokeswoman says the company patched the holes after being notified of the problems by Lamo. "We 
| take security extremely seriously," she says. 


Lamo says he knows he's taking legal risks, but hacking into networks is part of his nature. "As long as 
unauthorized exploration is going to happen on some level, what makes the most sense to me is to have it harm 
the fewest people as possible. If I'm trying to push any idea for people to evaluate here, that's it. If you can't 
eliminate it, and possibly aren't sure you want to, is harm reduction so unreasonable?" he asks. 


Lamo says he contacts the companies he hacks through the media because they don't "take calls from regular 
people seriously." When Lamo hacked into the networks of WorldCom and Excite@Home, both companies 
thanked him for finding the security problems and bringing them to their attention. 


But some analysts say Lamo is simply a publicity seeker who causes more harm than good by exposing 
companies’ security weaknesses, “He is like a drunk driver, and he doesn't understand the implication of his 
| actions,” says Pete Lindstrom, director of security strategies at Hurwitz Group. "Someone should take his 
notebook away." 
| 
| 
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Lamo said he broke into the newspaper's main intranet, or internal network, through another network linked to 
it, In all, he found seven insecure servers. He soon found an unsecured database of employee Social Security 
numbers, which he used to sign on to the system as various employees who were using the last four digits of 
their Social Security numbers as passwords, a common convention. 


He then used the account of an administrative assistant to create a user account for himself with broad privileges. 
Once he was signed on as an employee, he could have filed his own articles or possibly altered stories written by 
real New York Times reporters, Lame acknowledged. He once changed an old news article archived on the 
Yahoo Web site to prove a point. 

But tampering with New York Times stories "was something that I didn’t think it was appropriate to explore,” he 
said. Besides, he figured that the New York Times editors would stop any unauthorized writing from seeing 
print. 

"I'd be surprised if any really heinous changes made it through,” Lamo said. 

E-mail Carrie Kirby at ckirby@sfchronicle.com. 
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HEADLINE: Hacker breaks into New York Times 


DATELINE: SAN FRANCISCO, Feb 26 


BODY: 
A hacker is openly bragging he broke into a sensitive database at The New York Times, accessing sensitive 
information about employees and sources used by the prestigious newspaper. 


In an article on the California-based SecurityFocus website, Adrian Lamo, a 21-year-old computer security 
consultant detailed how he used IP addresses to find a database containing employee social security numbers and 
other data. Using this information, he was then able to find a password that allowed him to access the paper's 
internal servers where he found contact information on sources and contacts used by the newspaper. Servers 
store and pass along data on a computer network. 


"The server practically approached me," Lamo said in his critique of the newspaper's computer network. 
Lamo boasted that he had accessed the home phone numbers and other records of the paper's roster of 
contributors to its opinion pages, including the personal information of Hollywood stars Warren Beatty and 
Robert Redford, former UN weapons inspector Richard Butler, conservative radio talk show host Rush 
Limbaugh and former president Jimmy Carter. 


"We did get notified yesterday that there had been a security breach of our corporate security site," said Christine 
Mohan, a New York Times spokeswoman. "We identified the security flaw and addressed it." 


Mohan said the newspaper is continuing to investigate the breach. 


LOAD-DATE: February 27,2002 


http://www.nexis.com/research/search/submitViewTagged . 2/28/02 
FBI(19-cv-1495)-1627 


‘Security holes closed in New York Tin @prcenet after hacker intrusion | ee Page 2 of 2 


: ze 


Lamo said he's not trying fo find such holes to make corporate computing safer but rather follows 
his interests to see what he can find. “There was no motive behind the act. | realize that some 
people will sée my actions as illegal, immoral or worse," he said. “it's not for me to contest them 
or try to win them over to the Adrian Lamo school of security." 


Skepticism from outsiders about his actions is “understandable," he said. “Any motive that 1 could 
tack onto it would just be justification that would be invalid ... to someone somewhere. There's 
never been a real reason behind it.” 


Pete Lindstrom, an analyst with Framingham, Mass.-based Hurwitz Group Inc., said he’s puzzied 
that network intrusions by hackers like Lamo are offen met with inaction by the companies whose 
information is exposed. "There’s a Robin Hood aspect to this for some reason,” he said. 
WorldCom's reaction to Lamo's December attack was to thank him, rather than prosecute him, 
Lindstrom said. 


“L would love to know what the New York Times’ CEO thinks since WorldCom [and others] forced 
his hand" by not taking previous legal action against Lamo, Lindstram said. “This is a wayward 
kid who doesn't realize the impact of his actions. They need to take away his notebook and give 
him some real work to do.” 


Related stories: 


« New York Times hit by Nimda worm variant, Nov. 1, 2004 


* News sites simplified after performance bogs down, Sept. 11, 2001 


« Computerworld coverage of viruses, worms and security holes 


Copyright © 2002 Computerworid Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express. 
written permission of Computerworld inc. is prohibited. Computerworld and Computerworid.com and the respective logos are 
trademarks of Intemational Data Group inc, 
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The Associated Press 


The materials in the AP file were compiled by The Associated Press. These materials may not 
be republished without the express written consent of The Associated Press. 


February 27, 2002, Wednesday, BC cycle 
12:36 AM Eastern Time 
SECTION: Business News 
LENGTH: 197 words 
HEADLINE: Hacker says he saw Social Security numbers inside New York Times' network 
DATELINE: NEW YORK. 


BODY: 

A San Francisco hacker says he found security lapses in The New York Times’ internal 
computer network that exposed Social Security numbers for op- red page contributors and other 
sensitive files. 


Adrian Lamo, 21, a part-time Internet security consultant, said Tuesday that he hacked the 
newspaper's Web site and snooped around numerous times about 10 days ago. He said he found 
at least seven misconfigured servers, allowing savvy users to enter the newspaper's private 
network through its public Web site. He said he browsed through names and Social Security 
numbers of the paper's employees, home delivery customers' orders and contact information 
used by writers and editors on the Metro and Business desks. 


He said he accessed a database of 3,000 contributors to the Times' op-ed page, which included 
Social Security numbers for celebrities and government officials. 


Lamo said that the SecurityFocus Web site notified the newspaper of what he had done and that 
the newspaper patched the holes he found but did not acknowledge the incursion. 


A telephone message left at the newspaper's corporate communications division was not 
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about a potential security breach of our corporate intranet site," she said. 


“We identified the security flaw and addressed it," Mohan said. "We are continuing to investigate the 
situation to ensure the security of our network." 


This isn’t the first time the newspaper has come under attack; in 1998 a hacker posted pornography and 
Tacist text on the newspaper's Web site. 


MSNBC.com 


N.Y. Times source database hacked 
Paper's rich-and-famous op-ed, source database revealed 


By Bob Sullivan 
MSNBC 


Feb, 27 — A computer security researcher accessed internal New York Times 
computer networks this week through the Internet and managed to view 
Hundreds of sensitive Times files. Among them: a database of 3,000 Times 
op-ed page contributors. The file contained Social Security numbers and other 
personal information belonging te luminaries like James Carville, James Baker, 
Larry Lessig, and Robert Redford. The researcher also got phone numbers for 
William F. Buckley Jr., Rush Limbaugh, Warren Beatty and Jimmy Carter. In a 
statement , the New York Times said it is investigating the problem. 


THE RESEARCHER, ADRIAN LAMO, has a long history of exposing computer security problems at 
major Web sites. In the past, he has uncovered problems with America Online’s Instant Messenger, 
with MCI WorldCom networks that services big-name clients like Bank of America, and at Yahoo! 
When he breached Yahoo's security, Lamo was able to alter the content of a news story and post it on 
the Web porial’s site. 

Lamo said he wasn’t about fo access New York Times content when he rummaged through the 
company’s network earlier this week. But he was able, with relative ease, to poke around the Times’ 
corporate networks. While there, he was able to see names and social security numbers of Times 
employees, home delivery logs, even source lists for the newspapers’ reporters. 

Lame said he informed the newspaper of the breach through Kevin Poulsen, a reporter at 
computer security news Web site SecurityFocus.com, on Tuesday. 


In a statement, the New York Times said it is investigating Lamo’s claims. 

“The New York Times Company takes the security of its network very seriously,” said 
spokesperson Christine Mohan. “Yesterday, we were notified about a potential security breach of our 
corporate intranet site, we identified the security flaw and addressed it. We are continuing to 
investigate the situation fo ensure the security of our network.” 

Lamo supported his claims with a variety of screen shots sent to MSNBC.com. The images show 
lists names from what appear to be internal New York Times databases. Lamo was even able to add 
his name and phone number to a database of experts used by Times’ reporters. 


FBI(19-cv-1495)-1631 


The researcher said he was able to access the Times’ networks simply through a Web browser by 
locating vulnerable New York Times “proxy” servers. Proxy servers are generally considered a tool of 
safety, acting as a bridge between a company’s internal network and the 


outside world. But if they are misconfigured, they act instead as the perfect place to launch an attack. 
Once Lamo accessed a Times proxy server, he was able to hunt and peck through private information 
belonging to Times’ employees and customers. 


“This surely wasn’t anything the people involved had counted on when they'd been filling out that 
tell-us-about-yourself account form,” he said. 


Lamo, a 21-year-old nomad who is among the few computer researchers that use their real name 
when informing a company about a security problem, said he generally does his work to improve the 
state of computer security at large companies. His unconventional tactics are frequently criticized, he 
says. 

“t recognize that some peopie will see my actions as illegal, immoral, or worse. It's not for me to 
contest them or try to win them over to the Adrian Lamo School of Security,” he said. “ve done my 
best to act in good faith and avoid harm to the company and empioyees involved.” 
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The New York Times' corporate Intranet and Web-based applications that handle 
everything from payroll accounts to the newsroom's source database were penetrated 
by a freelance security researcher this week using nothing more than a Web browser, 
Newsbytes has learned. 


By Brian Krebs, Newsbytes I 
WASHINGTON, D.C., US.A., 
26 Feb 2002, 7:52 PM CST 


The discovery was made by 21-year-old Adrian Lamo, a white-hat hacker known for tracking down 
and alerting Fortune 500 companies that employ lackluster or non-existent security measures on 
their Web sites. 


The internal Web site included pages with detailed instructions for stringers and correspondents on 
how to file from the field, complete with dial-in modem numbers and accounts. The intranet also lists 
each Times employee's contact information, as well as their Social Security numbers. 


According to screenshots obtained by Newsbytes, the Times’ own “Everyone, Everywhere” newsroom 
contact database was also available via the corporate Intranet. The database contains phone 
numbers and contact information for such household names such as Yogi Berra, Warren Beatty, and 
Robert Redford, as well as high-profile political figures - including Palestinian leader Yassir Arafat 
and Secretary of State Colin Powell. 


The source database also contains Social Security numbers for all of the Times' guest op-ed writers, 
including Democratic operative James Carville and Internet policy guru Lawrence Lessig. Also 
spotted in the file were entries for William F. Buckley Jr., Rush Limbaugh, Microsoft founder Bill 
Gates, and New York Mayor Michael Bloomberg. 


In September 1998, a hacker group known as “Hacking for Girlies" broke into the New York Times 
Web site, replacing the main page with its insignia and a lengthy diatribe against New York Times 
technology columnist John Markoff for his book "Takedown," which the group said painted an 
inaccurate picture of hacker icon Kevin Mitnick. 


The New York Times subsequently moved the servers for its public Web sites to a more secure 
Internet address block. 


But the company left many Web pages created for use by employees and field reporters open to just 
about anyone curious enough to look for them, Lamo said. 


Times spokeswoman Christine Mohan confirmed that the company is “actively investigating a 
potential security breach. 


"The New York Times Company takes the security of its network very seriously," Mohan said. "Based 
on the results of this investigation, we will take appropriate steps if necessary to ensure the security 
of our network." 


Lamo located the internal network after querying publicly accessible Internet address records for 
mail servers on the New York Times address space, armed with the knowledge that e-mail is often 
processed by the same systems and networks that manage a corporation's firewall. 


Lamo gained access to the network using Web proxies located on the network. Proxies are machines 
that allows users to route through - or into - networks, often skirting past firewalls. The whole 
process from search to discovery took less than two minutes. 


“It struck me as being a part of their network more likely to be placed in a trusted location,” he said. 
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"Tronically, it wasn't until I mistyped a URL that I found what I was looking for - the error message 
invited me to ‘try the main New York Times intranet site’ instead." 


The Times' corporate intranet also allows users to access other sensitive areas, including the 
company‘s human resources department, as well as tools used to submit advertisements that 
accompany stories in the daily paper and the New York Times Web site, http://www.nytimes.com . 


The discovery highlights just how susceptible the Internet can be as a tool for spreading 
misinformation. Lamo said had he been so inclined, he probably would have been able to figure out 
how to successfully submit a small news item or advertisement for publication. 


Days after the Sept. 11 attacks, Lamo used a proxy on the Yahoo network to add satirical comment 
to a story on the company's Web site about Russian programmer Dmitry Sklyarov, a stunt that 
raised public concern about the integrity of online media. 


Last week, Lamo alerted SBC Communications that several of its Web pages containing tens of 
thousands of subscriber user names and passwords were exposed to the Web and completely 
unprotected. 


In December, Lamo discovered an Internet-accessible Web tool that provided easy access to the 
keys to private network routers for dozens of companies, including AOL Time Warner, Bank of 
America, Citicorp, Fox News Corp., JP Morgan, McDonalds, and Sun Microsystems - to name just a 
few. 


When asked why he does what he does, Lamo is noncommittal and somewhat cagey, downplaying 
his penchant for seeing things in ways that often go unnoticed by most. 


That didn’t stop him, however, from quietly adding his name to the newsroom's source list as an 
expert on computer hacking. 


"T'm not trying to bring about any sort of specific change anywhere by what I do ~ but in doing what 
Ido, acting in good faith doesn't seem like a bad thing, and hoping that someone in a similar 


situation in some undefined future might have options that aren't all a downwards spiral doesn't 
seem unreasonable either," Lamo said. “It would be nice." 


Reported by Newsbytes.com, http://www.newsbytes.com 


19:52 CST 
Reposted 19:57 CST 


(20020226/WIRES ONLINE, LEGAL, BUSINESS, TELECOM/NYTIMES/PHOTO) 


© 2001 The Washington Post Company 


ol —_-EE =] 


02/27/2002 10:53 AN 


ec: 


b6 -1,2 
b7C -1,2 


Subject: AP article on Hacker 


The Associated Press 


The materials in the AP file were compiled by The Associated Press. These materials may not 
be republished without the express written consent of The Associated Press. 


February 27, 2002, Wednesday, BC cycle 
12:36 AM Eastern Time 
SECTION: Business News 
LENGTH: 197 words 
HEADLINE: Hacker says he saw Social Security numbers inside New York Times’ network 
DATELINE: NEW YORK , 


BODY: 

A San Francisco hacker says he found security lapses in The New York Times’ internal 
computer network that exposed Social Security numbers for op-ed page contributors and other 
sensitive files. : 


Adrian Lamo, 21, a part-time Internet security consultant, said Tuesday that he hacked the 
newspaper's Web site and snooped around numerous times about 10 days ago. He said he found 
at least seven misconfigured servers, allowing savvy users to enter the newspaper's private 
network through its public Web site. He said he browsed through names and Social Security 
numbers of the paper's employees, home delivery customers' orders and contact information 
used by writers and editors on the Metro and Business desks. 


He said he accessed a database of 3,000 contributors to the Times’ op-ed page, which included 
Social Security numbers for celebrities and government officials. 


Lamo said that the SecurityFocus Web site notified the newspaper of what he had done and that 
the newspaper patched the holes he found but did not acknowledge the incursion. 


A telephone message left at the newspaper's corporate communications division was not 
immediately returned Tuesday night. 
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SECURITY NET 

By Alex Salkever 


Stop Him Before He Hacks Again 


Adrian Lamo has made quite a name for himself by breaking into corporate networks. He has done no harm — 
but that's not the issue 


Readers of The New York Times's "op-ed" page regularly find columns written by a host of world leaders and 
celebrities, from Palestinian leader Yassir Arafat and former U.S. President Jimmy Carter to hip-hop star and 


talk-show host Queen Latifah. The contact information for these luminaries is a closely guarded Times secret, 
as is the contents of the op-ed section's Rolodex. 


Not anymore. The Times op-ed section and its list of contributors were recently penetrated by one of the most 
controversial hackers to emerge since Kevin Mitnick, who spent almost five years in prison for repeatedly 
- invading computer systems at a slather of high-tech outfits. Meet Adrian Lamo, a soft-spoken 21-year-old 


snoop from San Francisco who hacks with nothing more than a laptop, a Web browser, and a Net connection at 
the local coffee shop. 


FRIENDLY WARNING. Lamo recently broke into the Times computer network, where he co-opted contact~ 
information files as well as sensitive details of the news-gathering and editing process at the Times. His tear 
through the Gray Lady's closet even gave him the ability to change the Web site at one of the world’s most 
powerful media organizations with a few key strokes -- an option he didn't exercise. Lamo then contacted 
computer-security publication Security Focus Online and asked it to contact the Times on his behalf to outline 
the breach. 


This isn't Lamo's first conquest. In September, 2001, he hacked into the content servers at Yahoo! -- and 
ictually did alter a news story to demonstrate that he was capable of breaching security. A month later, he 
acked customer-information databases at software powerhouse Microsoft. In December, 2001, he gained 
seess to secret network-topography diagrams at voice-and-data carrier WorldCom, going so far as to e-mail 
ompany officials a supposedly secret file showing key locations of network equipment. 


‘why hasn't Lamo been prosecuted for computer crimes? In each of these cases, he warned the companies 
out their flaws after-the-fact and offered to help fix them for free. Lamo further claims that he has accepted 
money or compensation from any of his targets, something that often happens in the computer-security 
rid, where a consultant reporting a breach often gets awarded a contract. Rather than condemning him, 
no's "victims" have mostly praised him for helping to secure their networks. 


a 
XUDER OR HERO? So far, the Times has neither condemned nor lauded Lamo. "We are currently deterr 


{ the appropriate next steps will be,” was how Times spokesperson Christine Mohan responded to - 
BusinessWeek Online. To date, no one has pressed charges. 


ww.businessweek.com:/print/bwdailv/an#l-- ‘ 
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A Star Is Born, Security Suffers 


Pete Lindstrom, Director, Security Strategies 
December 7, 2001 
Hurwitz TrendWatch — Thinking Out Loud 


Yesterday, we were all witness to the worst case of security apathy in the public 
world. If I had seen this in a movie, I'd have waiked out because the plot was just 
too unbelievable. A 20 year-old "do-good” hacker poked and prodded his way into 
one of the largest networks in the world, owned by WorldCom, gained access to all 
sorts of information that was apparently considered insignificant, and by the end of 
the story the WorldCom team is THANKING him for it. It is enough to make me 
retch. 


The Incident 


So the “wandering" dumpster diver, Adrian Lamo, apparently used a widely-available 
hacker tool to find a hole in WorldCom's network and proceeded to masquerade as 
an insider, Reportedly, he spent a month getting access to highly detailed diagrams 
of WorldCom's physical network infrastructure, employee records (with claims to be 
able to change an employee's direct deposit information), and passwords to gain 
access to the networks of WorldCom's client companies like Bank of America, JP 
Morgan, Citicorp, Sun Microsystems, and AOL (I sure hope they are screaming). 
Then he confessed. 


The Response 


Apparently, when WorldCom found out, they all got together to make nice. He 
willingly signed a non-disclosure agreement and showed the WorldCom folks their 
security vulnerability. They proceeded to SHOWER HIM WITH PRAISE like "We really 
appreciate his efforts to work with us" and asserted “At that end of the day, what he 
did wasn't destructive or harmful." This last comment, of course, is the key indicator 
that WorldCom has NOT LEARNED ITS LESSON. 


The Resolution 


Whew! I suppose it is over and everyone can go home happy. Lamo got the attention 
he wanted, WorldCom got a 20-year-old hacker's seal of approval, and security 
professionals around the world got a slap in the face. 


Why is it that we scream about rogue viruses and ignore a hacker with free reign 
over one of the biggest telecom company's intranet? Let me be clearer: Iam 
absolutely astounded at the indifference, nay graciousness, with which a company 
like WorldCom is treating the hacking nomad, Adrian Lamo, after he spent a month 
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“doing nothing wrong” on its internal network. Given the reported information, this is 
the most extreme case of negligence I have ever seen. 


Mistakes happen to even the most diligent enterprises. But to dismiss the nature of 
this CRIME screams negligence. Lamo broke the law, confessed, and was given a pat 
on the back. WorldCom claims nothing significant occurred. Nobody learned here. 


WorldCom can't really be sure there was no damage unless it does a thorough review 
of every network device and host system accessible via its Internet and changes ali 
passwords associated with administration. The fact that it doesn’t seem to think the 
incident is significant indicates that it won't perform these procedures. 


How many ways can something as benign as this go wrong? Let's see, what if he 
makes a mistake? What if someone steals his laptop? What if he stops liking you? 
What if he gives away the stuff he kept? What if he comes back? What if he uses 
that access to gain access to another site? There are too many possibilities that can 
lead to something going wrong. . 


There are a number of victims here, including under-appreciated customers and 
denigrated WorldCom security employees. These victims should strongly consider the 
impact of this incident as well as the precedent it sets. 


Adrian Lamo is a “serial hacker” looking for press who doesn't think he is doing 
anything wrong. What he deserves is jail time. WorldCom is a negligent entity that 
has breached the trust of all of its customers. What it deserves is a class-action 
lawsuit. The entire incident is indicative of the apathy that runs rampant in the face 
of actual incidents. 


Copyright © 2001 Hurwitz Group, Inc. [Adrian Lamo's Reported Victims: 


AOL, Apple Computer, Journal of 
‘Commerce, Microsoft, Excite@Home, 
‘Yahoo, World Bank, WorldCom, WorldCom 
‘Customers (Bank of America, JP Morgan, 
Citicorp, Sun Microsystems). 


Adrian Lamo’s Quotes (All from 
SecurityFocus): 


"The downside is, 'm running out of major 
U.S. corporations." 


“For me, [WorldCom's intranet is] a 
massive playground that's slowly and 
inexorably crumbling away at their security 
.|linfrastructure.” 


"I made it clear very quickly that all I was 
interested in doing was make it as positive 
lan experience as possible for everyone.” 


"i do what I do, there's noe particular 
motive I can describe." 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription Oe /2 8/2002 


Coo THE NEW YORK TIMRS, 

telephone number was telephonically contacted by 

the interviewing agent. After being advised as to the identity of 

the interviewing agent and the purpose of the iobecwiey (ss oa] 
provided the following information: 


is aware of an unauthorized computer intrusion 
into THE NEW YORK TIMES' intranet by ADRIAN LAMO. LAMO announced b6 -2 
to the media that he had hacked THE NEW YORK TIMES. a 
confirmed that LAMO gained unauthorized access to their intranet b7c -2 
and added his name to a newsroom database. LAMO also, gained 
access to their circulation area and a database that contained the 
names of their employees. LAMO was able to crack the password of 
one of their former employees. The former employees userid had 
supervisory rights. Using the supervisory rights, LAMO created 
other userid's on the network. 


commented that LAMO was also able to gain 
access to a beta database. : 


: b3 -2 
Investigation on __ 02/27/2002 a New York, NY (telephonically) oe : Ll 
File Date dictated 02/28/2002 4 IE 3 
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Date of transcription 06/10/2002 


THE NEW YORK TIMES (TIMES 229 West 43rd Street, New York, NY 
10036, telephone number was interviewed at his 


lace of employment. Also present during the interview was LL 
ee] After being advised a5 


to the identities of the interviewing agents and the purpose of the 
interview,[_| provided the following information: bé -1,2 
r 


In February 2002, __] was informed that an b7c -1,2 
individual by the name of ADRIAN LAMO hacked into the TIMES' 
intranet. While reviewing the monthly activity of their Lexis- 
Nexus_accounts noted that two (2) accounts; 
and utilized approximately 18% of the total usage by 
THE NEW YORK TIMES for the month. THE NEW YORK TIMES pays a flat 
fee for Lexis-Nexus services except in special circumstances. 


explained that 


saw the monthly usage for the accounts he became 
curious. Do queried several individuals to determine if they 
were employees of the TIMES. confirmed that the b6 -2,5 
individuais were riot employees, former employees or freelancers of bIC -2,5 
the TIMES, er 
DIE -2 
contacted 


Lexis-Nexus, telephone number 
stated that a Lexis-Nexus investigation revealed that the accounts 
were being accessed from two (2) KINKO's locations in California. 
It was Lexis-Nexus belief that the TIMES' network had_been hacked 
and there were three accounts created at that time. 
provided[____—sdwith the dates and times _the accounts were ; 


created _and the accounts were disabled. further stated 
that 
b3 -2 
Investigation on 06/06/2002 at New York, NY be -l 
b7C -1 
File Date dictated 06/10/2002 
bIE -3 
cy SA 
This document contains neither recommendations nor conclusions of the FBI It is the property of the FBI und is loaned to your agency; 
it and its contents are not to be distributed outside your agency. FBI(19-cv-1495)-1644 
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commented that also through the newsroom 
intranet the employees are able to access 


the employees_are able to create 
new userids and passwords like for Lexis-Nexus. stated he 
contacted an individual at whose name he currently does not 
remember. To date investigation Into whether any accounts were 
created[ i bY LAMO are negative. 


provided an email that contains the account 
information for the accounts set up by an unauthorized user. 
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Date of transcription 06/10/2002 


THE NEW 

YORK TIMES, 229 West 43rd Street, New York, NY 10036, was 
interviewed at_his place of employment. Also present during the 
interview was THE 
NEW YORK TIMES. After being advised as to the identities of the 
interviewing agents and the purpose of the interview, 
provided the following information: be >? 

is aware of the unauthorized access of THE NEWb7C -2 
YORK TIMES' network by ADRIAN LAMO. LAMO accessed their intranet 
via a proxy server. The proxy server was confiqured to allow 
proxy's to occur for operational purposes. a explained 
that the proxy server redirects to the web servers and firewalls. 
Once LAMO gained unauthorized access their proxy server, he . 
configured his web browser to be their proxy server. By doing this 
any activity he performed on their network was trusted because the 
proxy server was a trusted machine. further commented 
that LAMO was able to determine which one of their proxy servers 
were vulnerable by using a program called a proxy hunter. 


was_informed that LAMO had hacked into 


be -2 
bic -2 


One (1) of the servers that LAMO was able to view was theb7E -2 
newsroom server. LAMO had full access to this server after he 
became the proxy server. It was through this server that LAMO was 
able to set up Lexis-Nexus accounts as well as manipulate other 
databases. 


CL stated that steps have been taken to prevent a 
similiar hack occurring to THE NEW YORK TIMES. 


was able to see what areas/links LAMO had access to. 


Tnvestigation on 06/06/2002 at New York, NY b3 -2 
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Precedence: ROUTINE Date: 08/16/2002 
To: New York Attn: C-37 


From: New York 
Squad C-37 


b3 -2 

approved by: [TJ ps2 
BIE -3 
O 


Title: ADRIAN LAMO; 
New York Times-Victim; 
Computer Intrusion; 


OO: NY 
Synopsis: investigative research assistance with 
analysis of, RIAN LAM@: 
cone renter oe 
Enclosure(s): One (1) copy"Of of ADRIAN b3 -4 


LAMO for the dates of 6/1/01-5 


Details: In February 2002, LAMO ‘discovered several misconfigured 
proxy servers acting as doorways between the public Internet and 
the New York Times’ private intranet. LAMO utilized the proxy 
servers to gain access to the New York Times network. Once on 
the network, LAMO cracked a password for a userid with supervisor 
rights. Utilizing this userid he was able to broaden his access 
as well as perform certain functions within the network. LAMO 
had access to individuals names and Social Security Numbers. 

LAMO informed The New York Times of the security vulnerability 
through SECURITYFOCUS.COM. 


LAMO has committed computer intrusions into several 
other corporations such as WORLDCOM, MICROSOFT, AOL, EXCITE@HOME 
and YAHOO. LAMO uses'a “Proxy Hunter” to search the Internet for 
proxy servers that are misconfigured. Once he obtains this 
information, he configures his browser to appear and utilize the 
proxy server as his own. Once the computer intrusion occurs, 
LAMO searches the network to determine if there are any other 
vulnerabilities and in the case of The New York Times, left a 
backdoor so that he could enter at another time undetected. 


Each time LAMO commits a computer intrusion on a high 
profile organization he reports the vunerability and intrusion to 
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Re: 08/16/2002 b3 -2 


os bIE -3 


the media causing a distrust of the company’s clients. The above 
mentioned corporations have lost significant money and trust of 
their clients. 


Pursuant to a subpoena request 


Wiatthorized access to Lexis-Nexus account t@ individuals he b3 -4 
knows in California, Utah, Colorado and Atlanta. A brief review 6 -4 


oe - 
[C—“‘(‘OOtC#C#C*‘#ér On 8716/02, write? requested subpoenas bIC -4 
com AUSAT CO) for 


Writer requests assistance in analysis of the enclosed 
ADRIAN LAMO. . 


Investigation has revealed that fi has provide 
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NEW YORK 
AT NEW YORK 


Request for the assistance of NYO IOS in the above 
mentioned investigation. 


++ 


FBI(19-cv-1495)-165 


‘ . » 
o-+ Working Copy ---* “. page 
16 
Precedence: ROUTINE Date: 8/29/2002 
. SEREIN 15 UNCLAS 
To: Counterterrorism Attn: Computer Investigations JE 93-1¢-2010 3 
unit, CIOS, NIPC, 
Room 11719 
From: SAC, Dallas 
coved By: [TT 
prafted By: [Jat 
—— [ 
Title: Subject: Adrian Lamo 
Victim: Southwestern Bell - Victim 
Type: Computer Intrusion 
Date: 8/29/02 


SUBMISSION: X Initial Supplemental X Closed 
CASE OPENED: 08/29/2002 


CASE CLOSED: = 8/29/2002 


action due to state/locat prosecution (Referred to Dallas Police Department, | 
SA declination 


X Referred to Another Federal Agency (Name/Number:FBI New York [| 
Placed in unaddressed work 
Closed adninistrativety 
Conviction 
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Government Agency 
Private Corporation 
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VICTIM 


Company name/Government agency: Southwestern Bett Corporation, 1701 


Alma Orive, Plano, 1%, PoC] 


Purpose of System: Telecommunications 
Highest classification of information stored in system: Unclass. 


tem Data: 
6 Harduare/configuration (CPU): Network 
Operating System: Multiple 
Software: 


Security Features: 
Security Hardware Installed: X yes no 


Logon Warning Banner: yes no 


INTRUSION INFORMATION 


Access for intrusion: X Internet connection dial-up number LAN (insider) 


If Internet: Internet address: 
Network names 


Method: 
Technique(s) used in intrusion: Unknown 


9.. intrusion: N/A 


addresses: 1. 2. 3. 4 5. 
country: 1. 2. 3. 4 5. 
_ facility: 1. 2. 3. 4 5. 


Subject: Adrian Lamo 


Age: Races 

Sex: Education: 
Alias(s): Motive: _Financial Gain, 
Group Affiliation: 

Employer: 


Known Accomplices: 
Equipment used: 
Kardware/configuration (CPU): 


Page 
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Operating System: 
Software: 


Impact: 
Compromise of classified information: yes X no 
Estimated number of computers affected: Unknown 
Estimated dollar loss to date: Unknown 

Category of Crime: : 


Impairment: Theft of Information: 
Malicious code inserted 
e fied information compromised 
Denial of service 
Unclassified information compromised 
Destruction of informatton/software Passwords obtained 


Modification of information/software Computer processing time obtained 
Telephone services obtained 


Application software obtained 
Operating software obtained 
Intrusion: 
Unauthorized access 
Exceeding authorized access 


REMARKS: 


On 8/28/02, Dallas was contacted telephonically by| 
Security, Southwestern Bell Corporation, Dallas, TX, 
tated that he had been reading an article on 
security focus regarding Lamo not appearing on NBC for a piece 
NBC was doing regarding hacking when[___]noticed that Lamo took 
credit for being inside of a Telecom company. 


informed Dallas that this might have been his 
company. stated that shortly before this, his company had 
received an e-mail from Lamo informing them that they were 
vulnerable, but added that this had never been followed up on. 
[Jas unaware of any Losses or of any compromised systems, and 
based his contact with the FBI solely on the e-mail from Lamo. 
Dailas recalled that Daltas had previously covered leads 
regarding Woridcom at Dallas in relation to Lamo for New York. 
Dallas therefore referred[ _|to New York, and in particular SA 
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Cyber Squad 
Contact: SA 


Drafted By: 
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Title: ADRIAN LAMO 
New York Times-Victim; 
Computer Intrusion; 


Synopsis: Claim statistical accomplishment and refer victim to 
New York. 


iis: On 8/28/02, Dallas was contacted telephonically b 
Securit Southwestern Bell Corporation, Dallas, TX, 
stated that he had been reading an article on 


security focus regarding Lamo not appearing on NBC for a piece 

NBC was doing regarding hacking when[___]noticed that Lamo took 

credit for being inside of a Telecom company. b6 12 
oO 71, 


informed Dallas that this might have been his b7C -1,2 
company. stated that shortly before this, his company had 
received an e-mail from Lamo informing them that they were 
vulnerable, but adde@ that this had never been followed up on. 
Dallas recalled that Dallas had previously covered leads 
xvegarding Worldcom at Dallas in relation to Lamo for New York. 
Dallas therefore referred[_]to New York, and in particular SA 
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To: New York Attn: C-3 
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From: Dallas BERETH 
Cyber Squad Be 


© Gntacts sa 
approved By: [7] 
Drafted By: [7 Jal 


mee * [ 


Title: ADRIAN LAMO 
New York Times-Victim; 
Computer Intrusion; 


Synopsis: Claim-statistical accomplishment and refer victim to 
New York. 


ils: On 8/28/02, Dallas was contacted telephonically b 
Security, Southwestern Bell Corporation, Dallas, TX, 
tated that he had been reading an article on 
security focus regarding Lamo not appearing on NBC for a piece 
NBC was doing regarding hacking wherf | noticed that Lamo took 
credit for being inside of a Telecom company. 


b6 -1,2 


wo [——linformed Dallas that this might have been his b7C -1,2 
company. stated that shortly before this, his company had ~ ’ 
received an e-mail from Lamo informing them that they were 

vulnerable, ‘but added that this had never been followed up on. 

Dallas recalled that Dallas had previously covered leads 

regarding Worldcom at Dallas in relation to Lamo for New York. 

[attas therefore xveferred[____]to New York, and in particular SA 
Accomplishment Information: 

Number: 1 

Type: VICTIM CONTACTED/ INTERVIEWED - 

TTU: b3 -2 


Claimed By: bo -1 
Name: b7E -3,5 


Squad: Cyber 


Number: 1 
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concurrence_with Assistant United States Attormey| Cid 
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DLE: e174 


Subsequently, the writer 


A copy of this 
and is being submitted to the 1A section of 
this case file with this communication. 
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Precedence: PRIORITY . . Date: 09/06/2002 
To: Washington Field Attn: Squad_cre 
SSA 
Philadelphia Attn: Squ 
SSA 
San Francisco Attn: Squad_14B 
SSA 


From: New York 
Squad C~-37 


Contact: SA 
cellular telephone 
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Title: ADRIAN LAMO; 
New York Times-Victil 
Computer Intrusion; 
OO :NY 


Synopsis: Determine i 
facilities 


ilized listed Kinko's 


Enclosure(s): Listing of Kinko'd facilities in Washington, DC 
Listing of-Kinko's\facilities in Philadelphia, PA 
Listing of Kinko's facilities in San Francisco, CA 


One (1) copy recent news story about LAMO with 
photo 


Details: In February 2002, LAMO discovered several misconfigured 
proxy servers acting as doorways between the public Internet and 
the New York Times’ private intranet. LAMO utilized the proxy 
servers to gain a cess to the New York Times network. Once on 
the network, LAMO bracked a password for a userid with supervisor 
rights. Utilizing\this userid he was able to broaden his access 
as well as perform\certain functions within the network. LAMO 
had access to individuals names and Social Security Numbers. 

LAMO informed The Naw York Times of the security vulnerability 
through. SECURITYFOCUS.COM. 


LAMO has coijmitted computer intrusions into several 


other corporations su as WORLDCOM, MICROS! ITE@HOME 


To: Washingt: i From: New York b3 -2 
Re: 09/06/2002 DIE 2 


and YAHOO. LAMO uses a “Proxy Hunter" to search the Internet for 
proxy servers that are misconfigured. ‘Once he obtains this 
information, he configures his browser to appear and utilize the 
proxy server as his own. Once the computer intrusion occurs, 
LAMO searches the network to determine if there are any other 
vulnerabilities and in the case of The New York Times, left a 
backdoor so that he could enter at another time undetected. 


LAMO is a vagrant, traveling by bus from the East Coast 
to the West Coast and vice versa staying with friends or in 
hostels. LAMO utilizes the services of Kinko's to perform the 
majority of his hacking with his Toshiba laptop. LAMO is not 
employed, therefore when he performs his hacking he may spend 
hours at Kinko's. 


Each time LAMO commits a computer intrusion on a high 
profile organization he reports the vulnerability and intrusion 
to the media causing a distrust of the company’s clients. The 
above mentioned corporations have lost significant money and 
trust of their clients. : 


On approximately August 22 2002, LAMO hacked into NBC 
and a telecommunications company while being taped by a reporter 
for NBC to be aired on NBC Nightly News. The story was pulled 
when NBC attorney's learned of its content. LAMO committed the 
hacks from a Kinko's store on the East Coast. LAMO gained 
unauthorized to the telecommunications companies network and it 
unsure at this time whether he had authorization to hack into 
NBC's network. The New York Office is investigating this 
unauthorized access further. 


b7E -1 


who 
on/natiowal security 
for LAMO/ and the 


LAMO also has ties to former hacker 
was arrested by the FBI for com i j 
charges. 
corporations 


The New York Office and the Southern Distyict of New 
York are currently investigating LAMO and his computer 
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To: i isid : 
Re: 09/06/2002 


New York 


b3 -2 
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intrusions. The NYO along with the SPNY are looking to have an 
indictment against LAMOQ by the end of “september. 


Descriptive Data: 


Name - 
Last: 
First: 
Middle: 
Race: 

Sex: 

soc: 

Address - 
House #: 


Street Name: 


City: 
State: 


Postal Code: 


042-74-6804 


1230 


Market Street, 


San Francisco 
CA 
94102 


#106 
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LEAD (s): 
Set Lead 1: 
WASHINGTON FIELD 
AT WASHINGTON, DC 


Interview all employees of the following Kinko's stores 
and conduct logical investigation. Determine the ip address 
range allocated to the store for internet access, if not 
dynamically assigned. Determine the store's internet access and 
logging procedures. If LAMO is at any of the below listed 
locations, contact writer immediately.; 


Kinko's locations: 


1. Washington DC 7th & D 
325 7th Street 
Washington, DC 20004-2801 
(202) 544-4796 


2. Washington DC Capital Hill 
317 Pennsylvania Ave SE 
Washington, DC 2003-1148 
{202) 547-0421 


3. Washington DC 16th & K Street 
1612 K St NW Ste 100 
Washington, DC 20006-2802 
(202) 466-3777 


4. Washington DC 2020 K Street 
2020 K Street W 
Washington, DC 20006-1806 
{202) 331-9572 


S. Washington DC Catholic U 
204 Michigan Ave NE 
Washington, DC 20017-1005 
(202) 232-7124 


6. Washington DC Georgetown 
3329 M Street NW 
Washington, DC 20007-3514 
(202) 965-1414 


7. Washington DC Chevy Chase 


FBI(19-cv-1495)-1661 


To: Washinc ield From: New York 
Re: 09/06/2002 


5225 Wisconsin Ave ¥ 
Washington, DC 20015-2014 
{202) 362-5003 


8. Alexandria VA Old Towne 
685 N. Washington St 
Alexandria, VA 22314-1913 
(703) 739-0783 


Set Lead 2: 
PHILADELPHIA 
AT PHILADELPHIA 


Interview all employees of the following Kinko's stores and 
conduct logical investigation. Determine the ip address range 
allocated to the store for internet access, if not dynamically 
assigned. Determine the store's internet access and logging 
procedures. If LAMO is at any of the below listed locations, 
contact writer immediately. 


Kinko's locations: 


1. Philadelphia PA Marriott Conv Ctr 
1201 Market St 
Philadelphia, PA 19107-2817 
(215) 923-2520 


2. Philadelphia PA Stock Exchng 
2001 Market St 
Philadelphia, PA 19103-7044 
(215) 561-5170 


3. Philadelphia PA Spring Garden 
1816 Spring Garden St 
Philadelphia, PA 19130-3917 
(215) 567-2679 


4. Philadelphia PA Univ City 
3923 Walnut st 
Philadelphia, PA 19104-3608 
(215) 386-5679 


Ss. Philadelphia PA City Line 
4514 City Line Ave Fl 2 
Philadelphia, PA 19131-1509 
(215) 473-0500 ’ 
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To: Washington Fi From: New York 
Re: 09/06/2002 


6. Philadelphia PA Northeast s/C 
9171 Roosevelt Blvd 
Philadelphia, PA 19114 
(215) 330-0212 


Set Lead 3: 
SAN FRANCISCO 
AT SAN FRANCISCO 


Interview all employees of the following Kinko's stores and 
conduct logical investigation. Determine the ip address range 
allocated to the store for internet access, if not dynamically 
assigned. Determine the store's internet access and logging 
procedures. If LAMO is at any of the below listed locations, 
contact writer immediately. 


Kinko's locations: 


1. San Franciso CA Nob Hill 
1800 Van Ness Ave 
San Francisco, CA 94109-3623 
(415) 292-2500 


2. San Francisco CA Pine Street 
369 Pine Street 
San Francisco, CA 94104-3302 
{415) 834-1053 


3. San Francisco, CA Mission District 
7° 3965 & 1967 Market St 

San Francisco, CA 94103-1012 

(415) 252-0864 


4. San Francisco, CA Marina 
3225 Fillmore 
San Francisco, CA 94123-3402 
(415) 441-2995 


5. San Francisco, CA S of Market 
50 Fremont St 
San Francisco, CA 94105-2230 
(415) 512-7766 


6. San Francisco, CA South Beach 
303 2nd St 
San Francisco, CA 94107 
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“To: 
Re: 


(415) 495-8880 


7. San Francisco, 
201 Sacramento 
San Francisco, 
(415) 834-0240 


8. San Francisco, 
25 Stanyan Blvd 
San Francisco, 
(415) 750-1193 


3. San Francisco, 
1597 Sloat Bivd 
San Francisco, 
(415) 566-0572 


CA 
st 
CA 
CA 


CA 


CA 


CA 


Washington Field From: 
ee Jos/06/2002 : bo -2 


New York 


Finance District 


94111-3805 


Richmond District 


94118-3303 


Lakeshore 


94132-1222 
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Lamo Bumped from NBC After Hacking Them 


The helpful hacker demonstrates his techniques on camera for the NBC Nightly News, but 
lawyers kill the story when he cracks the broadcast network's own systems. 
By Kevin Poulsen, Aug 27 2002 2:24PM 


How did a mediagenic hacker like Adrian Lamo get himself bumped last week from a 
scheduled appearance on the NBC Nightly News with Tom Brokaw? 


Perhaps with his impromptu on-camera intrusion into the peacock network's own computers. 


The vagabond hacker known for his drifter lifestyle and his public forays into large and 
poorly-secured corporate intranets sat down at a Washington D.C. Kinko's laptop station 
earlier this month with a freelance NBC news producer to show-off his particular style of 
hacking -- the 21-year-old typically uses little more than an ordinary browser, possessing an 
eerie knack for finding undocumented Web servers and open proxies at large organizations. 


That method has gotten Lamo deep into the electronic infrastructures of such companies as 
troubled telecom giant Worldcom, Internet portal Yahoo, and most recently the New York 
Times, where last February he exploited lax security to tap a database of 3,000 Times op-ed 
contributors, culling such tidbits of information as Robert Redford's social-security number, 
and former president Jimmy Carter's home phone number. But unlike most intruders, Lamo 


eventually goes public with his discoveries, and offers to help those he's hacked tighten their - 


security pro bono -- an offer that's been accepted by several of his corporate targets. So far 
Lamo’s managed to avoid prosecution, though federal officials in New York are believed to be 
investigating him for the Times hack. 


"Maybe they should have 


* Lamo says NBC was taping him at Kinko’s while he demonstrated 
just talked to the 


. security holes in a telecommunications company's systems, when 
lawyers first... Alitfle the interviewer asked him if he'd be successful hacking NBC. 
front end work to 


identify the pitfalls Five minutes and one guessed 
would have made it a password later and Lamo was 
good story." surfing the television network's 

7 toe private messaging system and an 
- Journalism ethicist affiliate scheduling application that 
Kelly McBride included internal memos and 


information on advertising rates. 


ian Li ee moat of E ne hacking 
Screen shots of the hack provided by Lamo and reviewed by ried ah ordinary Web beaveser. 


SecurityFocus Online include a page from an NBC vendor database with the network's 
trademark "living color" peacock and the warning, "All information contained on this Web site 
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they have to get it.on the air, it's not the Pentagon Papers, ... A little front end work to 
identify the pitfalls would have made it a good story." 


For his part, Lamo, who's not known for shrinking from controversy, charges the network. 
with a failure of courage. "I can understand where they're coming from," says Lamo, ina 
telephone interview from somewhere on the East Coast. "But I like to think that in their place 
T'd take more of a risk." 


<tips@securityfocus.com> 


Discussion 
Lamo Bumped from NBC After Hacking Them Not Really Anonymous 
Lamo Bumped from NBC After Hacking Them Anonymous 
Lamo Bumped from NBC After Hacklng Them phil 
Phil's and tmbicile, and Lamo’s a crim. Scott 
Phil's and imbicile, and Lamo's a crim. bollocks Damien 
Phil's and imbiciie, and Lamo‘s a crim. NOT! Anonymous 
Phil's and imbicile, and Lamo's a crim. Ostracus 
Phil's and imbicile, and Lamo's a crim. Anonymous 
Phil's and imbicile, and Lamo’s a crim. Anonymous 
Lamo ts _a script kiddy Anonymous 
Lamo fs a script kiddy Ira Wing 
Lamo Is a script kiddy Anonymous 
Lamo is NOT a script kiddie Simon 
Lamo is a script kiddy Anonymous 
Lamo Is a script kiddy Anonymous 
Lamo isa script kiddy Anonymous 
Lamo isa script kiddy kokorozashi 
Lame Bumped from NBC After Hacking Them Anonymous 
Lame Bumped from NBC After Hacking Them Not Really Anonymous 
Lamo Bumped from NBC After Hacking Them Anonymous 
Lamo Bumped from NBC After HackIng Them Anonymous 
Lamo Bumped from NBC After Hacking Them Not Really Anonymous 
Lamo Bumped from NBC After HackIng Them Anonymous 
Lamo Bumped from NBC After Hacking Them Anonymous 
Lamo Bumped from NBC After Hacking Them Anonymous 
Lamo Bumped from NBC After Hacking Them Reger 
Lamo Bumped from NBC After Hacking Them Anonymous 
Lame Jay 
Lame Bumped from NBC After Hacking Them Anonymous 
Lamo Bumped from NBC After Hacking Them y2kprawn 
Lamo Bumped from NBC After Hacking Them Anonymous 
Lamo Bumped from NBC After Hacking Them Anonymous 
Lamo Bumped from NBC After. Hacking Them Anonymous 
Not Illegal! Anonymous 
Lame Bumped from NBC After Hacking Them MadLibs 


- My question Is why ? Brian Gray // Bloodline 


Lamo Bumped from NBC After Hacking Them M4rtin 
Lamo Bumped from NBC After Hacking Them Ron 


uhm..securityfocus Is slow I am jack's name 


So very smart Gleb 
Lamo Bumped from NBC After Hacking Them Camel 
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Kinko's - San Francisco CA Nob Hill 
1800 Van Ness Ave 

San Francisco, CA 94109-3623 
Phone: (415) 292-2500 

Fax: (415) 292-2504 

EMail: usa0289@kinkos.com 
Distance: 0.46 miles 


Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


Kinko's - San Francisco CA Pine Street 

369 Pine St 

San Francisco, CA 94104-3302 

Phone: (415) 834-1053 

Fax: (415) 834-1054 

EMail: usa0586@kinkos.com 

Distance: 1.1 miles 

Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


a 
3. Kinko's ~ San Fran CA Mission District 


1965 & 1967 Market St 

San Francisco, CA 94103-1012 
Phone: (415) 252-0864 

Fax: (415) 252-0924 


http://www.kinkos.com/locations/locator_results.php 


Page 1 of 2 
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kinkos.com Store Locator: “~ @ Page 2 of 2 


: EMail: usa4095@kinkos.com 
~ ‘i Distance: 1.2 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's 
{Store pick up available) ‘ 


a oo P 


4. Kinko's - San Francisco CA Marina 
3225 Fillmore 
San Francisco, CA 94123-3402 
Phone: (415) 441-2995 
Fax: (415) 441-1381 
EMail: usa5172@kinkos.com 
Distance: 1.2 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


a ig 


a sa 
5. Kinko's ~ San Francisco CA S of Market 

50 Fremont St 

San Francisco, CA 94105-2230 

Phone: (415) 512-7766 

Fax: (415) 512-7111 

EMail: usa4099@kinkos.com 

Distance: 1.3 miles 

Driving Directions | Location Map | Order Online with Print to Kinko's 

(Store pick up available) 


Powered by Vicinity Corporation - 
US maps Copyright GDT, Inc. 2002. Contents Copyright © 2002 Vicinity Corporatio 
All rights reserved. Terms of Use and Privacy Statement. 


About Us | Careers | Security & Privacy 
Kinko's 24-Hour Customer Assistance 1-800-2-KINKOS customerrelations@ki nkos. com 
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bIc 


Here are the 5 Kinko's stores nearest you. 2 


a By 
1. Kinko's ~ San Francisco CA South Beach 

303 2nd St 

San Francisco, CA 94107 

Phone: (415) 495-8880 

Fax: (415) 495-0300 

EMail: usa0916@kinkos.com 

Distance: 1.4 miles 

Driving Directions | Location Map | Order Online with Print to Kinko's 

(Store pick up available) 


u 


a : Lay 
2. Kinko's - San Francisco CA Finance Dist 

201 Sacramento St 

San Francisco, CA 94111-3805 

Phone: (415) 834-0240 

Fax: (415) 834-0243 

EMail: usad096@kinkos.com 

Distance: 1.4 miles ° 


Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


i) EY 


a 


3. Kinko's - San Francisco CA Richmond Dist 
25 Stanyan Blvd 
San Francisco, CA 94118-3303 
Phone: (415) 750-1193 
Fax: (415) 750-1199 


© FBICL9-cv-1495 
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kinkos.com Store Locator: i) 9 Page 2 of 2 


EMail: usa5160@kinkos.com 
» eee Distance: 1.9 miles 


Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


. Kinko's - San Francisco CA Lakeshore 

1597 Sloat Blvd 

San Francisco, CA 94132-1222 
; Phone: (415) 566-0572 
Fax: (415) 566-3148 
EMail: usa4094@kinkos.com 
Distance: 5.1 miles 
‘ Driving Directions | Location Map | Order Online with Print to Kinko's 
; . (Store pick up available) 


Kinko's - Sausalito CA’Sausalito 
2400 Bridgeway 


ye 


Driving Directions | Location Wap | Order Online with Print to Kinko's 
7 {Store pick up available) 


, Powered by Vicinity Corporation 
US maps Copyright GDT, Inc. 2002. Contents Copyright © 2002 Vicinity Corporatio 


| All rights reserved. Terms of Use and Privacy Statement. 


About Us | Careers | Security & Privacy 
Kinko's 24-Hour Customer Assistance 1-800-2-KINKOS customerrelations@kinkos.com 
* Copyright ©2002 kinkos.com, Inc, 
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kinkos.com Store Locator: Results Page 1 of 2 


ALL INE 
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a TATE 02-1 i 
I{ Home OUR SERVICES| (LOCATIONS | {SEA 


iver Results 


Here are the 5 Kinko's stores nearest you. 


| 


Kinko's ~ Philadelphia PA Marriott Conv Ctr 
1201 Market St 

Philadelphia, PA 19107-2817 

Phone: (215) 923-2520 

Fax: (215) 923-2360 

EMail: usa0669@kinkos.com 

Distance: 0.19 mites 


Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


2. Kinko's - Philadelphia PA Stock Exchng 

2001 Market St 

Philadelphia, PA 19103-7044 

Phone: (215) 561-5170 

Fax: (215) 561-5346 

EMail: usa0293@kinkos.com 

Distance: 0.53 miles 

Driving Directions } Location Map | Order Online with Print to Kinko's 
{Store pick up available) 


ug ay 
a B 
3. Kinko's - Philadelphia PA Spring Garden 


1816 Spring Garden St 
Philadelphia, PA 19130-3917 
Phone: (215) 567-2679 
Fax: (215) 567-2217 
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KinKOS.com Store Locator: Resulfs Page 2 of 2 


EMail: usai217@kinkos.com 
ae : Distance: 0.84 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up avatlable} 


q ¥ P 
d B 
4. Kinko's - Philadeiphia PA Univ City 

3923 Walnut St 

Philadelphia, PA 19104-3608 

Phone: (215) 386-5679 

Fax: (215) 386-3297 

EMail: usal210@kinkos.com 

Distance: 2.0 miles 


Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available} 


q ; op 


5. Kinko's - Philadelphia PA City Line 
4514 City Line ‘Ave FI 2 
Philadelphia, PA 19131-1509 
Phone: (215) 473-0500 
Fax: (215) 473-2903 
EMail: usa1214@kinkos.com 
Distance: 4.7 miles 


Driving Directions | Location Map | Order Online with Print to Kinko's 
{Store pick up available) 


Powered by Vicinity Corporation 
US maps Copyright GDT, Inc. 2002. Contents Copyright © 2002 Vicinity Corporatio 


All rights reserved. Terms of Use and Privacy Statement, 
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kinkos.com Store Locator: Results 
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Page 1 of 2 


imap Results 


Here are the 5 Kinko's stores nearest you. . g 


al 


Wynnewood, 
Phone: (610) 
Fax: (610) 896 


ui G 
a Es 
2. Kinko's - Cherry HillNJ Kinko's Plaza Route 70 

1160 Marlton Pike EY 

Cherry 

Phone: (8 

Fax: (856) 4: 

EMail: usa12 inkos.com 

Distance: 9.7 milé 

Driving Directiofis | Locatio& Map | Order Online with Print to Kinko's 

(Store pick up available) 

ag z BP 
a é fo fh 
3. Kinko's - id PA Baltimore Pike 

1001 Balti: 


Springfield, 
Phone: (610 
Fax: (610) 7 


: FBI(19-cv-1495)-1678 
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kinkos.com Store Locator: Results Page 2 of 2 


- EMail: usa0284@kinkos.com 
- - -- Distance: 9.8 miles 


Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


q . + 
ral B 
4. Kinko's - Philadelphia PA Northeast S$/C — 

9171 Roosevelt Blvd 

Philadelphia, PA 19114 

Phone: (215) 330-0212 

Fax: (215) 330-0375 

EMail: usa0793@kinkes.com 

Distance: 11.0 miles 


Driving Directions | Location Map [ Order Online with Print to Kinko's 
(Store pick up available) 


gq 


EMail: usa0587@kinkos.com 
Distance: 11,Ymil 


Driving Directioffs { Locatid) Map | Order Online with Print to Kinko's 


(Store pick up avatlable) 


Powered by Vicinity Corporation 
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Here are the 5 Kinko's stores nearest you. gE 


a 
1. Kinko's - Washington DC 7th & D> 
325 7th St 
Washington, DC 20004-2801 
Phone: (202) 544-4796 
Fax: (202) 347-8736 
EMail: usa0671@kinkos.com 
Distance: 0.37 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


u . ed 
a & 
2. Kinko's - Washington DC Capitol Hill 

317 Pennsylvania Ave SE 

Washington, DC 20003-1148 

Phone: (202) 547-0421 

Fax: (202) 543-8393 

EMail: usai810@kinkos.com 

Distance: 0.86 miles 


Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available} 


it pie 


a + 
3. Kinko's - Washington DC 16th & K Street 
1612 K St NW Ste 100 
Washington, DC 20006-2802 
Phone: (202) 466-3777 
Fax: (202) 466-4165 
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http://www.kinkos.com/locations/locator_results.php 3/15/02 


kinkos.com Store Locator: Results Z Page 2 of 2 
EMail: usai822@kinkos.com 


Distance: 1.3 miles 


i bs Driving Directions | Location Map [ Order Online with Print to Kinko's 
(Store pick up available) 


u ; Pp 


a Y 
4. Kinko's - Washington DC 2020 K Street 
2020 K St NW 
Washington, DC 20006-1806 
Phone: (202) 331-9572 
Fax: (202) 331-9721 
EMail: usal815@kinkos.com 
Distance: 1.7 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


ug BD 


rai 
5. Kinko's - Washington DC Catholic U 
204 Michigan Ave NE 
Washington, DC 20017-1005 
Phone: (202) 232-7124 
Fax: (202) 232-3890 
EMail: usal805@kinkos.com 
Distance: 2.3 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's : 
{Store pick up available} 


Powered by Vicinity Corporation 
US maps Copyright GDT, Inc. 2002. Contents Copyright © 2002 Vicinity Corporatio 
All rights reserved. Terms of Use and Privacy Statement. 


About Us | Careers | Security & Privacy 
Kinko's 24-Hour Customer Assistance 1-800-2-KINKOS customerreiations@kinkos.com 
Copyright ©2002 kinkos.com, Inc. 
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http://www.kinkos.com/locations/locator_results-php 3/15/02 


a in 75 +5 


kinkos.com Store Locator: Results 


Page 1 of 2 


be -1 


- : _ —_ bIC -1 
geankos com 
map Results . . . 
Here are the 5 Kinko's stores nearest you, E 


1, Kinko's - Washington DC Georgetown 
3329 M St NW 
Washington, DC 20007-3514 
Phone: (202) 965-1414 
Fax: (202) 333-7433 
EMail: usa1801@kinkos.com 
Distance: 2.9 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 


u G 
BE 
2. Kink stal City 
1601CXrystal Squar 
Arlingto 
. Phone: ( 


EMail: us@182Q@kinkos.com 
Distayge: 3.0 miles 


Drivi frectic ion Map | Order Online with Prin€ toKinko's 
(Store pick up dvallabl ) 
u DS o 


FBIC{19-cv-1495)-1682 
_ --/locator_results.php ?retumNum=5 &originatdd= extLoc&locatorURL=CMD%3DMORE%26F 3/15/02 


Pewee 


kainkos.com Store Locator: Kesults 7 Page 2 of 2 


EMail: usa1820@kinkos.com 
Distance: 3.9 miles 


= v he 7 Driving Directions | Location Map | Order Online with Print to Kinko's 
{Store pick up available) 
a] G 
a ES 
4, Kinko's - Washington DC Chevy Chase 
5225 Wisconsin Ave 
Washington, DC 20015-2014 
Phone: (202) 362-5003 
Fax: (202) 362-5163 
EMail: usa0388@kinkos.com 
Distance: 5.8 miles 
Driving Directions | Location Map | Order Ontine with Print to Kinko's 
. {Store pick up available) 
u B 
4 ay 
5. Kinko's - Alexandria VA Old Towne 
685 N Washington St 
Alexandria, VA 22314-1913 
Phone: (703) 739-0783 
Fax: (703) 739-0785 
EMail: usai819@kinkos.com 
Distance: 5.9 miles 
Driving Directions | Location Map | Order Online with Print to Kinko's 
(Store pick up available) 
a B 
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bo -1 
b7C -1 
1 DIE -3 
On 09/19/2002, i investigation was 
conducted _b pecial Agent and Special Agent 
Ce det the Washington Field Office, regarding ADRIAN 
; bé -1,5 


ee b7C =1,5 
(Philadelphia, D.C., and Baltimore), Kinko's inc. Corporate 


Offices, 1033 Haston Road, Willow Grove, Pennsylvania 19090, 


telephone number facsimile number (610) 631-8999, 
e-mail address was contacted at the Kinko's 
store located at 325 7th Street, N.W Washington, D.c. 20004- 
2801, telephone number Also present during the 
investigation was Kinko's Inc. 


3232A Crain High jaldorf, Ma: d 20603-4849, telephone 
number extension cell phone number po 
[Je-mait 


[vas advised by the investigating Agents that the 
FBI was seeking the cooperation of Kinko's representatives in the 
Washington, D.C. metropolitan area regarding a criminal 
investigation. He was also advised that the subject of this 
investigation may be using internet portals at Kinko's stores in 
the Washington, D.C. area, among others, to launch computer 
intrusions against major corporations. \ 

(Jana aavisea that they would cooperate with 
the FBI in anyway that they could.[— _] will provide the 
investigating Agents with the IP addresses. for all of the Kinko's 
stores in the Washington, D.c. area..._____]will notify all of 
the Washington, D.C. area store managers and advise them to 
cooperate with the FBI during this investigation. 


b6é 
b7C 


-35 
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FD-302 (Rev. 10-6-95) 


FEDERAL BUREAU OF INVESTIGATION 


bo -1,6 
b7c -1,6 


Date of transcription 09 /2 0 l 2002 


Kinko's, telephone number ate! 
email was telephonically contacted 


by the Interviewing agent. After being advised as to the identity 
of the interviewing agent and the purpose of the interview, 
provided the following information: 


bIE -1 
Investigation on 09/19/2002 a New York, NY (telephonically) be -1 
b7C -1 
i Date dictated 09/20/2002 b3 -2 
>» ees 
This document contains neither recommendations nor conclusions of the PBL It is the property of the FBI and is loaned to your agpnpy;, 
it and its contents are not to be distributed outside your agency. FETCES-cv- 1495)-168 


ENON Koons 


BLL INFORMATION 
BEREIN 


TAINED 


UPLOAD 
WITHITEX 


ean) 
BY. a 


e , @ FBI(19-cv-1495)-168 
ee eet 


bé -1,6 
10/01/2002 b7c -1,6 


CAH: besa 
bIE -3 


The attached email was sent | Kinko's, regarding preserving the 
video tapes from their Washington, DC stores for the dates of August 25/26, 2002 due to the 
hack of NBC by ADRIAN LAMO from one of their Washington, DC stores. Writer is still 
attempting to determine which Kinko's he utlized to commit the intrusion. 


b3-2 


FBI(19-cv-1495)-1688 DIE _3 


Page 1 of 1 


1 
b6 -1,6 
——b7c -1,6 


Thanks for the information the other day. I am still waiting to receive some more information regarding 
IP addresses and text strings that should help in the search you are doing for us. I will forward them 
onto you as soon as I get them. 


Another issue came up and I was wondering who to address it to, as you know on August 25/26, LAMO 
hacked into a telecommunications company and then into NBC while being filmed by a news team. He 
did all of his hacking from a Kinko's in DC. I am still investigating which store in DC he was in but 
until then can we have the video tapes from all the stores in DC preserved. I know you usually hold 
them for 60 days and J am hoping to have the right store by then but just in case I don't can they be 
preserved for more than 60 days? Do you need anything from me to preserve the tapes? Or ifI 
subpoena the tapes could they be sent to me? I believe there are approximately 12 stores in the DC area 
or are there more? i 


appreciate all of your help in this matter. 


—— 


FBI(19-cv-1495)-1689 
Printed for FBI - New York Office <c37 ny@fbi.gov> 10/1/2002 


WITH, 
Wit 


@ 8 FBI(19-cv-1495)-169 


10/01/2002 


I 


An ACS check was conducted into the following names. The names were obtained 
through subscriber records for telephone calls placed to them by ADRIAN LAMO. 


bil 
ser 


SSN 
DL: 
employer: 


te 


ling address: 
rvice address] 


lephone number; 


2. 
ling address: 
SSN: 
employer: 
telephone number: 
3. 
4, 
5. 


lephone number: 


6. UNIVERSITY OF REDLANDS{ 


bé -1 
bic -1 
b7E -3 


b6 -5 
b7C -5 
DIE -2 


be -5 
bIC -5 
DIE -2 


FBI(19-cv-1495)-1691  b7E -3 


fF 


billing address: 1200 E. Colton AVenue, Redlands, CA 9234-3720 
telephone number: (909) 307-7558 


7. MICROSOET corporaTiOnf DIE -2 


3635 157th Avenue NE 

Redmond, WA 98052-5326 

CBR: (425) 882-8080 

telephone number: (425) 936-7751 


FBI(19-cv-1495)-1692 
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FBI{19-cv-1495)-1693 


(01/26/1998) 


Precedence: ROUTINE Date: 10/04/2002 


To: New York 


From: New York 
Squad C-37 


Contact: gal 
b3 -2 
*pproved By: [0 


b6 -1 


b7E -3 


Title; LAMO, ADRIAN 
New York Times-Victim; 


Computer Intrusion; 
OO :Ny 


Synopsis: Request to open sub-files and change of title. 


Details: Writer requests 


the following sub-files to be Opened in 
above referenced case: 


Also, please open the following sub files: 


Sub B 
i b3 -4 


+ 
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FD.302 Rev. 10-6-95) 


Race: White 
Age: Harly 20's 
Height: 5'11" (approximately) 
b3 -2 
be -1 
Tnvestigation on 09/20/2002 a Washington, D.C. b7c -1 
File Date dictated N/A b7E -3 
by SA FBI(19-cv-1495)-1696 
This document contains neither recommendations nor conclusions of the FBI. It is the propery of the PBI and is loaned to your agency: y 
it and its contents are not to be distributed outside your agency. 
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TATE 


FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 09/25/2062 


Gate of bixth[ social security 
account number was interviewed at his place of 


employment, Kinko's, 325 7th Street, N.W., Washington, D.C. 20004. 
After being advised of the identi : of the interviewing Agent and 


the puxpose of the interview, 
information: 


provided the following 


He is a 
Kinko's. His normal shift is 
is the 


was shown a photograph of ADRIAN LAMO by the 
interviewing Agent. He recognized LAMO as a Kinko's customer. He 
recalls assisting LAMO at this Kinko's location approximately three 
or four months ago. 


Between approximately 2:00 pm and 3:00 pm one afternoon, 
LAMO entered the aforementioned Kinko's to fax a document. There 
was a store assistant helping another_customer with a fax and LAMO 


became impatient. LAMO approached and asked if there was 
another fax machine that he could use. said that there was 
another machine and that he would assist him. 
While assisting tao, [—_] engaged him in a short - bo -6 
conversation. LAMO stated that he was trying to fax a document to b7C - 


resolye a situation whereby his laptop computer had been 
confiscated. 


LAMO claimed that a friend borrowed his laptop and used 
it to web surf child pornography sites. He was sitting next to 
said friend at a library when his laptop was confiscated. LAMO was 
not specific as to who confiscated it. 


[____]éescribea LAMO as follows: 


Sex: Male 


” 


FD-302a (Rev. 10-6-95) 


Continuation of FD-302 of ,On 09/20/2002 Page 2 


cb 


[| 


Weight: ‘ 165 

Build: Thin 

Hair: Brown 

Hair style: Short 

Eyes: Green 

Facial hair: _ None 

Mise: . Well groomed 
Clothing: T-shirt and jeans 


[-__] remembered LAMO because of his engaging green eyes 


and the unusual conversation about the laptop. 


b6 -6 
DUC =6 
63-2 
b7E -3 
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b3 -2 
bo -1 
b7c -1 
b7E -3 


The following investigation was conducted on 09/20/2002 
by Special agent (SA) regarding ADRIAN LAMO: 


The investigating Agent contacted employees of the b6 -1.6 
Kinko's store located at 325 7th Street, N.W., Washington, D.C. _ , 
20004. Store employees were shown a picture of ADRIAN LAMO. b7c -1,6 


was the onby employee who recognized LAMO. 


His 


comments are submitted to this file under separate cover. 


The following is a list of the Kinko's employees that 


were contacted at this location: 


Customer 
Customer 
Customer 
Customer 
Customer 
Customer 
Customer 
Customer 
* Customer 
Customer 
Customer 
Customer 
Customer 
Customer 


Gkawgo9a 


Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 


the HEW YORK 


1 18 2002 b7E -3 


UPLOADED 
wurst ye 


Vintig 
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be -l 
b7c -1 
CAH: cah b7E -3 


10/03/2002 


Wei ically contacted> Cid telephone 
number in response to a message left | 
Th 


pertaining to _a_subpoena oena 3 . 
requested i 


would organize the requested information and would 
provide it to the writer in a timely manner. 


53-2 
FBI(19-cv-1495)-1700 bIE -3 


| | 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 07/26/2002 


Information Security, 


9443 Springboro Pik Miamisburg, OH 45342, email: be -6 
hone number [7 and p7c -6 
facsimile number was interviewed at 26 Federal 


Plaza, New York, NY. After being advised as to the identities of 
the interviewing agents and the purpose of the interview, 
provided the following information: 


Lis the of Information Security 
for LEXIS-NEXUS. became involved in the investigation of 


the computer intrusion of ADRIAN LAMO into the NEW YORK TIMES and 
then LEXIS-NEXUS in May 2002. 


Referring to the log files of the unauthorized access 
by ADRIAN LAMO into LEXIS-NEXUS 


-6 
-6 
= 
LAMO gained unauthorized access to this 
intranet page and he created the userids TOOMANYSECRETS, 
PROTAGONIST, LOCUSTS, VAISHNAV and NUIUJB. 
verified with the TIMES that these 
userid’s were not created or utilized by any employee of the 
TIMES. 
| Cexplained that 
b6 -6 
LC CL was able to determine that some of the userids b7c -6 


were access from KINKOS. The userids created by LAMO conducted 
approximately 2700-3000 searches on LEXIS-NEXUS. Searches b7E -1 
ranging from name, address, social security number, detailed 
motor vehicle records, news libraries, etc were conducted. 

stated that the number of searches conducted by the 


Investigationon 07/25/2002. at New York, NY b6 -l1 


This document contains neither recommendations nor conclusions of the FBI. It is the property of the FBI and is loaned to your agency; 


Date dictated bo? 


Ald DIE -3 


it and its contents are not to be distributed outside your agency. FBI(19-cv-1495)-1702 


FR-302a ev. 10-6-98) 


Continuation of FD-302 | On07/25/2002 _ Page 


userids were much greater than the normal activity of the TIMES‘ 
users. The number of searches performed by the TIMES’ account 
greatly increased once the userids were created. was able 
to determine that the increase in the TIMES’ usage of their 
services was caused by the userids TOOMANYSECRETS, PROTAGONIST, 
LOCUSTS, VAISHNAV and NUIUJB. The cost of the amount of services 
utilized by the five (5) userids was approximately $300,000. The 
TIMES was originally charged for this activity. At this time, 

is unaware of whether or not the $300,000 has been 
refunded to the TIMES by LEXIS-NEXUS. Because of the 


unauthorized access by LAMO, LEXIS-NEXUS has suffered a monetary 
loss. 


Log files are maintained by LEXIS-NEXUS in relation to 
the all userid’s activity. The original log files pertaining to 
the userid’s created by LAMO have been secured. 


FBI(19-cv-1495)-170 


Swe i - ,b3 -2 
SERIALIZE Pitorss: b6 -1 


b7c -1 
{ OCT 4 9 2002 ae 


@ . @ FBI(19-cv-1495)-170 


CAH: cah 
07/10/2002 bé -1,6 
b7c -1,6 


Information Security, 9443 b3 -2 


Springboro Pike, Miamisburg, OH 45342, email: DIE -3 
hone number and 
facsimile number contacted the te by encrypted 


email. ent the writer the approp; at Oyfiles 
pertaining to the unauthorized use by ADRIAN fspante LEXIS- 


NEXUS. 
The log files will be maintained in thé file. 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 10/10/2002 


KINKO’ Di rimen lephone 
number was 
telephonically contacted by the interviewing agent. After being 
advised as to the identity of the interviewing agent and the : 
purpose of the interview,|____| provided the following b6 -6 
information: bIC -6 


is a member of KINKO’s Legal Department. || 
stated that with a subpoena KINKO’s would be able to provide the 
Internet Protocol (IP) address ranges for their stores in 
Washington, DC, Philadelphia, PA and San Francisco, CA. =a 
stated that once the subpoena was received she would forwar © 
to [ho is familiar with the investigation. 


b3 -2 
Investigationon 10/09/2002 at New York, NY (telephonically) b6 -1 


File # Date dictated 10/10/2002 z b7C -1 
aD aoe 
by SA 


This decument contains neither recommendations nor conclusions of the FBI. It is the property of the FBI and Is loaned to your agency; 
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10/19/2002 


ee 


bIE -3 
The attached email was received by_—_—«é Microsoft email address: . 
in reply to an email sent to him by writer. stated that the phone 
number belongs t ‘or MSNBC. That 
number was called by ADRIAN LAMO on eight (8) occassions. 
b3 -2 
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10/15/2002 
CAH: cah 


An ACS and___khecks were conducted into the following names. The names 
were obtained through subscriber records for telephone calls placed to them by ADRIAN LAMO 


bo -5 
b7C -5 


Sex: Female 


home telephone: 
work telephone: 
SSN: 


telephone’ 
home telephone: 
work telephone: 


SSN: 
DOB 


other address: 


b3 -2 
FBI(19-cv-1495)-1715 HIE -3 


ee ee 


10. 


telephone, 
SSN: 
DOB; 


address: 
telephone] 
home telephone: 
work telephone: 


telephone: 
home telephone: 
work telephone: 


telephone: 
home telephone: 
telephone: 


other people at address: 
a 


home telephone: 
telephone: 
Employer: 


FBI(19-cv-1495)-1714 


11. 


12. 


13. 


home telephone: 
work telephone: 


Employer: 


address: 
other address: 
telephone: 
SSN: 
DOB} 


home telephone: 
work telephone: 
Employer: 

SSN: 
DOB: 


address 


b6 -5 
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be -1 
bIC -1 


The following investigation was conducted on 10/09/2002 b3 -2 
by Special Agent (SA) fae er ieee reine ADRIAN LAMO: b7E -=3 


The investigating Agent contacted employees of the 
Kinko's store located at 204 Michigan Avenue, N.E., Washington, 
D.C. 20017. Store employees had a picture of ADRIAN LAMO posted 
prominently in their work space. All of the employees had 
previously been briefed on LAMO, and none had ever seen him 
before. 


This location has one (1) "Design™ station and four (4) 
work stations available for public use as well as 2 Apple 
computers. They do not permit users to connect their own 


machines to the Kinko's network, and they do not have a laptop 
d@ocking-station currently available. een 
Ee expects that a laptop docking-station wi e available 


soon. 

The subnet for bIE -1 
the workstations in rs, from viewing a workstation b6 -5 
configuration, to be the most eee! 
technically aware employee, was not familiar with the access WS =9 


procedures, firewall, or computer logging done locally at the 
Michigan Avenue Kinko's. 


The hours for this location are: 
Weekdays - 7 a.m. to 9 p.m. 
Saturday - 9 a.m. to 5 p.m. 
Sundays - Closed 


The following is a list of the Kinko's employees that 
were contacted at this location: 


b3 -2 
ustomer Service b7C. =5 
Customer Service bIE -3 
Customer Service 


Nov «: & ene 


ea 
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bSea2 
bé -1 
—— ae 
CAH: ca b7E -3 
10/09/2002 : 
Writer was telephonically contacted_b 
[=a] Legal Department, telephone number Upon 
the request of AUSA writer explained that she was 


verbally request ing| 


pertaining to the computer intrusion of ADRIAN LAMO. . 
Writer tiformed ba that they were currently in the be -4,5 


process of obtaining Department of _Justice (DOJ) approval for a pH7C -4,5 
subpoena requesting the logs Erol fotated that 
she was not sure if DOJ approval was needé © obtain the 

technical logs. She further stated that all that may be needed 

is a Grand Jury subpoena but she would_have to verify this with 

others in their Legal Department. [[—S—C*disaidd that if any 


part of the LAMO story was to be subpoenaed then DOJ approval 
would be necessary. 


Cer aintormed writer that she would get back to her 
regarding this matter. 


3h =2 
bTE -3 
FBI(19-cv-1495)-1720 


The following investigation was conducted by 
sa (Jane sab at San Francisco, 


California on October’ 16, 2002: 


eT) bee a 
KINKO'S, 1597 Sloat Boulevard, San Francisco, California (CA) 


94132, telephone number [[___—C—“(‘(CidAbEtOY being shown a picture 
of ADRIAN LAMO, did not recognize LAMO as ever using that KINKO'S 
facility. None of the other employees present recognized LAMO. 


born [at 
KINKO'S, 303 2nd Street, San Francisco, CA 94107, telephone 
number[ id; after being shown a picture of ADRIAN LAMO, 
did not recognize LAMO as ever using that KINKO'S facility. None 
of the other employees present recognized LAMO. 


born [7] at KINKo's, 
ulevard, San Francisco, CA 94118, telephone number 
ee @ after being shown a picture of ADRIAN LAMO, did not 
recognize LAMO as ever using that KINKO'S facility. None of the 
other employees present recognized LAMO. 


born [at 
KINKO'S, 3225 Fillmore, San Francisco, CA 94123, telephone number 
CL _Jafter being shown a picture of ADRIAN LAMO, did not 
recognize LAMO as ever using that KINKO'S facility. None of the 
other employees present recognized LAMO. 


ae oe 
1800 Van Ness Avenue, San Francisco, 7 €ilepnone number 


after being shown a picture of ADRIAN LAMO, did not 
recognize LAMO as ever using that KINKO'S facility. None of the 
other employees present recognized LAMO. 


born Lat 
KINKO'S, 369 Pine Street, San Francisco, CA 94104, telephone 
numbex[__s—“=“‘*C*#d’SCafter: being shown a picture of ADRIAN LAMO, 
did not recognize LAMO as ever using that KINKO'S facility. None 
of the other employees present recognized LAMO. 


born at: KINKo's, 
201 Sacramento Street, San Francisco, CA 94111, telephone number 
after being shown a picture of ADRIAN LAMO, did not 
recognize LAMO as ever using that KINKO'S facility. None of the 
other employees present recognized LAMO. 


FBI(19-cv-1495)-1724 
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b3 -2 
gee 71 
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b7E -3 
bé -1,5 
b7c -1,5 

b6é -5 

b7Cc -5 
b3 -2 
DIE -3 


born at 

KINKO'S, 50 Fremont Street, San Francisco, CA 94105, telephone 

numberL 1] after being shown a picture of ADRIAN LAMO 

did not r i as ever using that KINKO'S facility. =| 
TREES employee at this KINKO'S site, thought As 

that LAMO seemed familiar as someone who may have used the \ 

computer facility two to three weeks ago [feould not confirm 

that it was LAMO. None of the other employees present recognized b6 -5 


LAMO. b7C -5 


born [Lat KINKO'S, 
1965 Market Street, San Francisco, CA 94103, telephone number 
after being shown a picture of ADRIAN LAMO, did not 
recognize LAMO as ever using that KINKO'S facility. None of the 
other employees present recognized LAMO. 


KINKO'S Internet customers can bypass the employee 
counter and go directly to the Internet stations and pay without 
having to log any information. Any customer can insert a prepaid 
or credit card to begin Internet service. The KINKO'S employees 
present did not know which Internet Protocol (IP) addresses were 
assigned to the customer Internet stations, nor did they know the 
method by which each IP address is assigned to each station. 

‘ A flyer of LAMO was left at each KINKO'S to circulate 
and post in a private location to verify with the rest of the 


employees whether or not any of them had recognized LAMO. The b6 -1 
flyer instructs the KINKO'S employees to contact SA[_ Jor SA b7c -1 
fe] if they see LAMO. In addition, the employees were 


instructed to note the location and time LAMO used the computer 
facility. The flyer is attached hereto and made a part of the 
case file. 
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Precedence: ROUTINE Date: 10/28/2002 


Tor New York acts [OO] 


From: 


prattea ny: [fg b6 = 


Case ID #: 


Title: 


Synopsis: 


Administrative: 
regarding the 
San Franci 


Enclosure(s): Oxiginal and two copies of the insert, flyer of 
ADRIAN LAMO, and 1-A of original notes. 


Detail 


in San Francisco. All employees present were shown a flyer of 
ADRIAN LAMO and asked whether he was ever seen using the customer 
Internet stations. None of the KINKO'S employees could confirm 
ever seeing LAMO. The flyer was left at each site along with 
contact information. 


counter and go directly to the Internet stations and pay without 
having to log any information. Any customer can insert a prepaid 
or credit card to begin Internet service. The KINKO'S employees 
present did not know which Internet Protecol (IP) addresses were 
assigned to the customer Internet stati 
method by which each IP address is assi 
Internet station is unknown. 


San Francisco 


ADRIAN LAMO; 

New York Times-Victim; 
Computer Intrusion; 
OO:NY 


DATE OS 


FEDERAL BUREAU OF INVESTIGATION oman 


Squad 14B/ 
Contact: 


EC. ol 
b7E -3 


To report the completion of the San Francisco Lead. 


Case agent was contacted 


used by KINKO'S in the b3 -1 
: b6 -1 
b7c -1 


m October 16, 2002, sas[——idanaiE SC ——~S~d™d: b6 -1 


conducted:an investigation at all the KINKO'S sites pyc -1 


KINKO'S Internet customers can bypass the employee 


SERIALIZED. 


Noy ©: 8 2002 


Ls 


_FBI(EG-cv- -1495)-1723 


. alo: ® San Francisco @ 
Re: 10/28/2002 b3 -2 


bIE -3 


San Francisco considers this lead covered. 


bad 
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b3 -2 


b6 -1,5 
b7c -1,5 
bI7E -3 


The following investigation was conducted by Special 
Agent wayD oo dat Alexandria, Virginia, on 


10/24/2002: 


With the cooperation of Kinko's 
| all employees of the Kinko's store located at 685 N. 


et, Alexandria, Virginia, 
were shown a photograph of ADRIAN LAMO. 


22314, 


telephone number: 


Store 


employees were asked to determine if they recalled the presence 
of LAMO, or anyone who matched the description of LAMO, at the 
Kinko's store in the past. These queries met with negative 


results. 


The following is a list of the Kinko's employees that 


were contacted at this location: . 


Customer 
Customer 
Customer 
Customer 
Customer 
Customer 
Customer 


Customer. 


Customer 
Customer 


Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 
Service 


FBI(19-cv-1495)-172 


— Want@d- for Questioning 


Date: 10/16/2002 


Name: Adrian Lamo 
Address 
San Francisco, CA 94102 
Sex: M 
Eyes: Green 
Hair: Brown 
Race: White 


OTHER INFORMATION BELOW 


Adrian Lamo is under investigation by NY FBI for numerous computer intrusions. Currently, there is 
no warrant for his arrest. It is believed that Lamo frequents Kinko's Copy Centers in the San 
Francisco area to log into the Internet. If Lamo is located, contact San Francisco FBI at the phone 
number listed below. 


lor SA be 1 
lor (415) 553-7400 (24 hours) eT — 1 


TRAK (356:1.6.48) 


FBI(19-cv-1495)-1726 


DRTE 92-12-201" 


LE Jre Basie oeyrys 


@ 6 FBI(19-cv-1495)-172 
__ 


ALL INFIRMATIS 
HEREIN IS UNLLA! 


@ bé -1,5 
TATE 03-15-2010 b7e -1,5 


L__] 03:58 PM 10/10/02 -0700, Verification of compliance with subpoe 


To; 

From: SA| 

Subject: Verification of compliance with subpoena 
Ce: 

Bec: 

Attached: 


| 
Thank you for your compliance with the subpoena[__——SSSS—Cs questing thd 


By receiving the facsimile from your office ~b6 -1,5 
dated 10/10/2002, you are now in compliance with the subpoena. .Personal appearance is not 70-1 5 
tequired as the facsimile satisfies the subpoena. 


- b3 -1 
if you have any questions | can be contacted a —=sd 
Thank you, ~ 
SAL J _ 
be -l 
b7c -1 


Printed for SA| 1 


FBI(19-cv-1495)-172 


awe 


SEREIN T. 
SATE 0-15 


® 


FBI(19-cv-1495)-1729 


CAH:cah 


11/12/2002 b3 -2 
bo -1 
sal received a CD Rom in the mail from] The CD Romb7C -1 
contains the| by b7E -1,3 
ADRIAN LAMO. 


A copy will be maintained in the file. 


@ 
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Precedence: ROUTINE Date: 11/18/2002 
To: New York ; Attn: Squad C-37 
From: Washington Field 


CR-16/NVRA 
Contact: 


Drafted By: b3 2 
Bee 
Case ID #: b6e -1 
b7c -1 
Title: ADRIAN LAMO; b7E -3 


NEW YORK TIMES-VICTIM; 
COMPUTER INTRUSION; 
OOo: NY 


Synopsis: To report results of WFO investigation and to close 
lead. 


Details: As per request, WFO conducted investigations at the 
following Kinko's locations in the Washington, D.C. area: 


1. 325 7th Street, NW 
Washington, D.C. 20004-2801 
(202) 544-4796 : 


2. 317 Pennsylvania Avenue, SE 
Washington, DC 20003-1148 
(202) 547-0421 


3. 1612 K Street, NW, Suite 100 
Washington, DC 2004-2802 
{202) 466-3777 


4. 2020 K Street, Nw 
Washington, DC 20606-1806 
(202) 331-9572 


5. 204 Michigan Avenue, NW 
Washington, DC 20017-1005 
(202) 232-7124 


be. 2 
Noy 222002 «DIE -3 


i 


To: New York From: Washihgton Field 
mre: [= 41/18/2002 b3 -2 


6. 3329 M Street, NW 
Washington, DC 20007-3514 
(202) 965-1414 


7. 5225 Wisconsin Avenue, NW 
Washington, DC 20015-2014 
(202) 362-5003 


8. 685 N. Washington Street 
Alexandria, .VA 22314-1913 
(703) 739-0783. 


All employees at the aforementioned Kinko's locations 
were shown a picture of ADRIAN LAMO and asked if they had any 
knowledge of him or had seen him in theix respective Kinko's 
store. With one exception, of which was previously reported, 
none of the Kinko's employees had seen or had knowledge of ADRIAN 
LAMO. 


Pictures on LAMO were left at each Kinko's location and 
have been posted in the employees break areas. SA 
contact information was also provided to the employees along with b6 -1l 
instructions to contact him-immediately if LAMO was seen. b7IC -1 


Per a previous telephone conversation between SACL _] 
and SAL_S—s—“;C;C;CCTC*i’;SC#§@bvangements have been made for NYO to 
obtain store specific Internet Protocol addresses by means other 
than WFO investigators. 


Original FD-302s and inserts pertaining to WFO 
investigations at each of the aforementioned Kinko's locations 
have been sent under separate cover to the NYO. 


WFO considers this lead covered and closed. 


FBI(19-cv-1495)-1732 


tes To: New York Prom: Washington Field 
ne: [ee] 1478/2003 


LEAD(s): 
Set Lead i: 
NEW YORK 
AT NEW YORK 


Read and Clear. 


+ 


b3 -2 
bTE -3 
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On 11/14/2002, Specia: Agent 
Washington Field, conduct i i 
to the above case number 


Kinko's Copy Service 
in the Washington, D.C. area. SA nad[sdmet at the b3 -2 
Kinko's Center at 5225 Wisconsin Ave., Washington, D.C. 20015- é 
2014. sAaL_ltoldL___|that the Bureau needed to determine P/E —3 
the IP address range allocated to and internet access and logging 
procedures for the below listed Finko's Copy Centers. 

Additionally, SAL___ provided a recent picture of the subject 

of referenced investigation, ADRIAN LAMO. 


CL dwas very cooperative and advised that all 
Kinko's Copy Centers in the Wasnington Metropolitan area, 


including the below listed, had curre i res of LAMO posted b6 -5 

in the employee's break rooms. Also, had personally my 

spoken with all managers at Washington area stores and relayed b7C -5 

the above requests from the Bursau to them. Managers of 

individual Kinko Stores queried ail employees at their respective 

locations to determine if anyone had ever seen LAMO at the store. 

With regard to the below stores, no employees had seen LAMO. 

Kinko's Copy Center Locations 

Washington DC Capital Hill Washington DC 16th & K St. 

317 Pennsylvania Ave., SE 1612 K St., NW, Ste. 100 

Washington, D.c. 2003-1148 Washington, D.C. 20006-2802 

Washington DC 2020 K St. Washington DC Georgetown 

2020 K St., NW 3329 M St., NW 

Washington, D.C. 200065-1806 Washington, D.C. 20007-3514 

Washington DC Chevy Chase 

5225 Wisconsin Ave. 

Washington, D.C. 20015-2014 ? 
b3 -2 
be -1 
DAC =L 

ee 


MAR 4 9 2003 


MEW) YORK 


fermen 3190 Lins 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 11/06/2002 


Source, who is not in a position to testify, provided the 
following information: . . 


Source was co: i a lead from the New York 
Division on case wee pee Pome Hecardins # ueeting that Sources be b3 -2 
canvassed regarding any information about subject Adrian Lamo and b7E -3 
his possible involvement in several computer intrusions. 


Source advised that he/she did not have any information 
on Lamo, and has not seen this type of intrusion on his/her 
network. 


The lead from New York Division is attached to and made 
part of this FD-302. 


Investigation on 


05/31/02 


File Date dictated 11/06/02 b7E -3 
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Precedence: ROUTINE Date: 03/14/2002 
To: All Field Offices 


From: New York 
Squad C-37 


; M4 
b3 -2 
ase # b6 -1 a wep 


Title: ADRIAN LAMO; b7c -1 


New York Times~-Victim; bITE -3 ok 
Computer Intrusion; v 


00: NY 


Synopsis: Canvass all FBI Offices for positive information -k 
regarding ADRIAN LAMO.  ~ c 
Details: In February 2002, LAMO discovered several misconfigured 


proxy servers acting as doorways between the public Internet and ig 
the New York Times’ private intranet. LAMO utilized the proxy 


Approved By: Ld] ros 


servers to gain access to the New York Times network. Once on 
the network, LAMO cracked a password for a userid with supervisor 
vights. Utilizing this userid he was able to broaden his access 
as well as perform certain functions within the network. LAMO 
had access to individuals names and Social Security Numbers. 

LAMO informed The New York Times of the security vulnerability 
through SECURITYFOCUS.COM. 


LAMO has committed computer intrusions into several 
other corporations such as WORLDCOM, MICROSOFT, AOL, EXCITE@HOME 
and YAHOO. LAMO uses a "Proxy Hunter" to search the Internet for 
proxy servers that are misconfigured. Once he obtains this 
information, he configures his browser to appear and utilize the 
proxy server as his own. Once the computer intrusion occurs, 
LAMO searches the network to determine if there are any other 
vulnerabilities and in the case of The New York Times, left a 
backdoor so that he could enter at another time undetected. 


Each time LAMO commits a computer intrusion on a high 
profile organization he reports the vunerability and intrusion to 
the media causing a distrust of the company’s clients. The above 
mentioned corporations have lost significant money and trust of 
their clients. 


LAMO has ties to former hacker who was bé 
arrested by the FBI for pic 


FBI(19-cv-1495)-173 


-~-- Working Copy ---- . Page 2 


The New York Office and the Southern District of New 
York are currently investigating LAMO and his computer 
intrusions. 


Descriptive Data: 


Main Subject 


Name - 
hast: LAMO 
First: ADRIAN 
Middle: 
Race: W 
Sex: M 
SOC: 042-74-6804 
Address - 
House #: 1230 
Street Name: Market Street, #106 
City: San Francisco 
State: CA 
Postal Code: 94102 
LEAD (s): 
Set Lead 1: 


ALL RECEIVING OFFICES 


It is requested to query logical sources and report only - 
positive intelligence regarding known or potential actions of be -1 


ADRIAN LAMO. Positive saree should be directed to SA b7C -1 
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- . FEDERAL BUREAU OF INVESTIGATION 


Precedence: ROUTINE Date: 12/16/2002 
To: New York Attn.: C-37 Rotor 
New York Attn.: SSA 


From: New York °¢ 
Squad C-37 


Contact: a/ssa[ 


Draftea py: [—]1m 


= D3. 2 
sel 48 2002 be -1 


SOURCE, cE d 4 rae : = 

Bare, FANE LD ze cle Sih ‘ £31 — NEW YORK bic -1 
suPvL, Be CALTbDIE -3 
PL EFFEC 


WHOSE 
BY. Cow FBI(19-cv-1495)-1739 


paTE_N 9-7 E> - es 


¥ To: = lew York 
Re: 12/16/2002 


. . b3 -2 


DIE -3 
Title: ADMINISTRATIVE AND MISSION MATTERS, SQUAD C-37 
SQUAD PERSONNEL MATTERS 
Synopsis: Request closing, reassignment, or completion/wrap up 
of the above listed cases. 
Details: Due to EC dated 11/21/2002, the following personnel 
were trans -37 to DT-5: SA 
SA SA SA SA 
Based on a review of the below listed files, it was 
determined that investigation did not produce sufficient evidence 
of a crime. It is therefore requested that the following cases 
be administratively closed: bo -1 
b7C -1 
FILE NUMBER Date Opened b3 2 
bIE -3 
09/08/02 
07/10/02 
08/01/01 
41/01/01 
08/01/02 - 
07/26/02 
07/10/01 


FBI(19-cv-1495)-174 


To: : w York b3 -2 
Re: 12/16/2002 


b7E -3 


Based on a review of the below listed files, it was 
determined that additional investigative work is still to be 
completed. Therefore, the following cases will be reassigned: 


FILE NUMBER CASE AGENT NEW CASE AGENT 


bo -1 
b7c -1 
b3 -2 
b7E -3 


FBI(19-cv-1495)-174 


To; 2 w York - 
: b3 -2 
: 12 

Re tC (16/2002 bITE -3 


As the majority of investigative work has been 
completed, the following cases will continue to be worked/closed 
down by the originally assigned agent: 


CASE AGENT 


STATUS 


Fully adjudicated, 
only evidence 
disposal issues 


Fully adjudicated, 
only evidence 
disposal issues 


Fully adjudicated, 
only evidence 
disposal issues 


Trial Prep, 01/03 
Trial date 


bé -1 
b7C -1 
The following leads were assigned months prior to the b3 -2 
DT-5 reassignment and will therefore stay with the original b7E -3 


assigned agent.to be completed: 


Assigned 


08/19/2002 
09/21/1998 


+ 


FBI(19-cv-1495)-1744 


Reassignments 


December 30, 2002 


FROM TO FILE # 


bo -1 
b7c -1 
b3 -2 
bE -3 
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as woe 


WITHITERT 


Wip —_ 
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oe FEDERAL BUREAU OF INVESTIGATION bre ~1 
Precedence: ROUTINE Date: 02/05/2003 
To: New York Attn: C-37 Rotor 
DT-5 Rotor 


From: New York 
Squad DT-5 


Approved By: [en fate b3 -2 


Title: ADRIAN LAMO; @ 
New York Times~Victim; 


Computer Intrusion; 
oO :NY 


Synopsis: Change classification of above mentioned case and 
transfer to DT-5 


Details: Wri above mentioned case classification 

be changed to The investigation has revealed an 

attack on the infrastructure of the United States’ computer 

networks with no financial basis. Peo 


Since writer has been transferred to DI-5, writer requests the 
above mentioned case be transferred to Squad DT-5 with the writer 
as the case agent. 


+ 


FBI(19-cv-1495)-1745 
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(Rev. 10-01-1999) 


be -1 
bIC -1 


Precedence: ROUTINE Date: 12/10/2002 


From: Miami 
C-6 


Approved By: Se boos2 
Drafted By: [das bo -1 


Byes Hi 
| pre 3 
Title: ADRIAN LAMO; 
NEW YORK TIMES-VICTIM; 


COMPUTER INTRUSION; 
00: NY 


Synopsis: Report findings to Case Agent. 


Reference(s): [7 


Enclosure(s): Copy of article titled "Inside the Hacker Mind" 
from NEW ARCHITECT magazine, December 2002. 


Details: While conducting research via the Internet, writer 
discovered an article pertaining to ADRIAN LAMO. Per reference 
EC, enclosure is being forwarded to titled case agent for 
informational purposes and further investigation if appropriate. 


ba -2 
(bé -1 
b7C -1 


SERRE. INDEXED 
SeaAMEEBS keg 


8 OGG 
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To: Ne A 
Re: 
LEAD (s): 


Set Lead 1: (Adm) 


Aad 


NEW YORK 


Miami 
12/10/2002 


AT NEW YORK, NY 


Read and clear. 


b3 -2 
b7E -3 
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[| _ fora 


nut Abe 0. 


UPLOADED 
WITHITEXT, JAN 1 5 oan 


WITHIOUT ZEXT. Le ' b6é 
PENT bé -1,5 
(Rai | 1 
ofl ) p7c -1,5 
a | b3 -2 
DIE -3 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 01/14/2003 


Lrssnsne pase Kino 
Cte ephone number was telephonically 
contacted by the interviewing agent. After being advised as to the 


identity of the interviewing agent and the purpose of the b6 -5 
intense eeev ded the following information: bye -5 
is not familiar with ADRIAN LaMO.[__|stated 
that he has recentl a loss prevention intranet web-site 
for KINKO's, further stated that once received he would 
put a flyer about LAMO on their intranet site asking individuals 
who have information about him to contact the interviewing agent. 
b3 -2 
Investigation on 01/14/2002 New York, NY (telephonicaliy) b6 -1 
bios) 
File Date dictated 91/14/2002 bIE -3 


by SA 


This document contains neither recommendations nor conclusions of the FBI. It is the property of the FBI and is loaned to your agency; 
it and its contents are not to be distributed outside your agency. FBI(19-cv-1495)-1749 


ALL INFCRMATION 
vu HEREIN IS UNOLA! 
TATE 92: 


UPLOADED 
Witiyr; EXT. 


WITHoOU TEXT, bere 
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PATER ET gy 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 01/14/2003 


Francisco, CA, telephone number was telephonically 


contacted by the interviewing agent. After being advised as to the 


identity of the interviewing agent and the purpose of the b6 -5 
interview] ~~ | provided the following information: p7c -5 


is familiar with the name ADRIAN tamMo.[ has 
seen flyers with LAMO photograph on them in several of the San 
Francisco, CA area stores. ee stated to please send him 
information pertaining to LAMO and he will query his other stores 
to see if they have any knowledge of LAMO. 


_ gee “wat b3 -2 

Investigation on § 01/14/2002. 3t New York, NY (telephonically) b6 -1 
Sa ya 

File # Date dictated 01/14/2002 pre 3 
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EREIN IS WIL 
TAIE 02-15-2 


r e@ FBI(19-cv-1495)-1752 


Out Page | of 1 


/ b3 -1 
SugaSE SubpooTe RGU AE b6 -1 
Subject: Subpoena request: Attn: pie -1 
: 


| am not sure if you remember speaking to me regarding the Adrian Lamo investigation several 
months ago. We are still continuing to investigate his activities. One of the. thins | have done 


since we last spoke was send some of our Agents to interview employees 
 frogarting Lama, They were mosty 


attempting to determine if Lamo utilized their facilities. In speaking to several of the managers 
of the stores, the Agents were informed that! 


and referred us to your legal department. We 
Po in the interlamn, 1 Fave spoken to fo has 


ultimately referred me to you regarding this issue. She informed me that you have a copy of 
the subpoena and would be able to provide me with the information. What the subpoena b3 -1 
requests is: b7E -1 


b6é -1,6 
b7c -1,6 
[ was wondering if you had this information available and if you could email it to me. If you 
have any questions please call me at 


Thank tee for your time and help, 


FBI(19-cv-1495)-1753_ 


Kintos wod 


UBLGAGED 

WITH/TEXT. —_——_— ipl 

WITHOUTTEXT.______— JAN 74 onne i 

i FEL b6 -1,5 

DATE___.APR 2-993 \ ew (dee sl, 5 
b3 -2 
b7E -3 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 02/14/2003 


Paralegal, KINKO's LEGAL UNIT, telephone 
number was telephonically contacted by the 
interviewing agent. After being advised_as to the identity of the 
agent and the purpose of the interview,[ _] provided the 
following information: b6 -5 


DEE 5. 


stated that there are loss 
KINKO'S. 


revention managers 
that 


telephone number 


Eastern 
including Washington, DC, telephone number (etal 
vania and telephone number 
San Francisco, CA. 


b3 -2 
Investigation on 01/14/2002 at New York, NY bo -1 


neq Date dictated 01/14/2002 b7c -1 
bIE -3 
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It is the property of the FBI and is foaned to your agency; 


This document contains neither recommendations nor conclusions of the FBI 
it and its contents are not to be distributed outside your agency. 
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. FEDERAL BUREAU OF INVESTIGATION bic 
Precedence: ROUTINE Date: 02/21/2003 
To: New York Attn: FMU 
MIS 


From: New York 
Squad DT-5 


Approved By: SAC 


ASAC| a 
CSSA’ dh pe ; 
2A SSA oieew - 

. oF aa b7C -1 

Drafted By: [7 sift bTE -3 


Title: ADRIAN LAMO; 
New York Times-Victim; 
Computer Intrusion; 
00: NY 


Synopsis: Request for case fund expenditure 


Enclosure(s): One (1) copy of comparision price listing for 
requested software . 


Details: ADRIAN LAMO is the subject of the above mentioned 
computer intrusion investigation. 


In February 2002, LAMO discovered several misconfigured proxy 

| servers acting as doorways between the public Internet and the 
New York Times’ private intranet. LAMO utilized the proxy 
servers to gain access to the New York Times network. Once on 
the network, LAMO cracked a password for a userid with supervisor 
rights. Utilizing this userid he was able to broaden his access 
as well as perform certain functions within the network. LAMO 
had access to individuals names and Social Security Numbers. 

LAMO informed The New York Times of the security vulnerability 
through SECURITYFOCUS.COM. 


LAMO has committed computer intrusions into several 
other corporations such as WORLDCOM, MICROSOFT, AOL, EXCITE@HOME 
and YAHOO. LAMO uses a “Proxy Hunter” to search the Internet for 
proxy servers that are misconfigured. Once he obtains this 
information, he configu: his browser to appear and utilize the 
4 proxy server as his own mce the computer intrusion occurs, 

\ LAMO searches the network to dérmiSSjit- there are any other 


PES MPT es 
BaP OVID 
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To: lew York From: New York 
Re: 02/21/2003 b3 -2 


vulnerabilities and in the case of The New York Times, left a 
backdoor so that he could enter at another time undetected. 


Each time LAMO commits a computer intrusion on a high 
profile organization he reports the vunerability and intrusion to 
the media causing a distrust of the company’s clients. The above 


mentioned corporations have lost significant money and trust of 
their clients. 


Due to the specific technical needs o 
investigation, it is necessary for the software to 
be purchased. The software is a necessary component needed to 


continue and complete the investigation. DIE -1,6 


The current budget balance in captioned case is 


es these payments, the case budget will be 


+ 
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DATE 03-13-2010 b7C -1,5 
01/14/2003 b3 -2 
CAH:cah bIE -3 
The attached emails were sent tL —s«dszi telephone number 
email: CT | telephone number email: 
pertaining to ADRIAN LAMO. 


FBI(19-cv-1495)-176 


* rd 


05:19 PM 1/14/03 -0500, Adrian Lamo : 


To: 
From: 8; 
Subject: Adrian Lamo E 


Ce: 
Bee: b6 -1,5 


Attached: aap uieeEuaiien y bic -1,5 


REIN I 


Hi] 


As per our conversation, | have attached a flyer of Lamo with detailed information about him 
and the investigation. As | stated in our telephone call, it is known that Lamo utilizes Kinko's 
services to access the internet in order to commit unauthorized intrusions of corporations. 

Once Lamo does these intrusions, he does contact the companies through a third party but it is 
not until he reports the vunerability to the media first given other hackers the opportunity to get in 
the compromised system. Also, Lamo is usually in the system for a long period of time before 
he contacts the company to let them know of the vunerability. 


Lamo does not have a steady home address. He frequents the states of California, Texas, 
New York, Pennsylvania and Washington, DC/Virginia. When he performs his hacks he usually 
utilizes his own laptop computer, so some of the Kinko's he is using have internet access for 
laptops. 


| appreciate all of your help on this investigati is anything you ever need from my 
end please let me know, | can be contacted al cell: ae 
email 

bo -1 


Sin OAC maaan 
SA : 


bé -1 
Ire. eh 
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Hi, SATE 23-15 


Suis DEY RYS 


Page 1 of 1 
b6 -1,5 
bic -1,5 


Thank you for taking the time to speak with me today, | really appreciate it. After | spoke with 
you | contacted, who was also very helpful. He told me to forward him the 
attached flyer, which | did and he will get the okay to put it on your loss prevention intranet 
web-site. He also stated that he will query the areas where Lamo frequents for further 


information. 


] just wanted to let you know so that you both and not d 


the flyer for your information. My contact information is 
cell: 


ing duplicate work. | have attached 


| 


FBI New York, 


Thanks again for your help. If you ever have any questions please feel free to call me. 


Sincerely, 


Special Agent] 


bé -1 
bIC -1 
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FEDERAL BUREAU OF INVESTIGATION 


Precedence: ROUTINE Date: 04/06/2003 
To: New York 


From: New York 
Squad DT-5 


Approved By: [7] b3 -2 


bo -1 


peated sy: [1 pic 1 


Title: ADRIAN LAMO; 

New York Times-Victim; 
Computer Intrusion; 
CO: NY 


Synopsis: Change classification of above mentioned case and 
transfer to DT-5 


Details: Writer requests the above mentioned case classification 

be changed rere The investigation has revealed an Dor 2 
attack on the infrastructure of the United States' computer bIJE -3 
networks. The subject is within the United States and is not 


state sponsored. 
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REIN I 


05/07/2003 
CAH‘:cah 


The attached email was received fonl_|fom[___ regarding the 
subpoena served on them requesting any/all documentation pertaining to the computer intrusion 


by ADRIAN LAMO. b3 -1,2 
. spot ad & bé -1,5 
A copy of the email and file will be maintained in the file. pyc -1,5 
b7E -3 
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LAmo.mbx e@ @ Page 1 of 1 
Subject: FW: Grand Jury Subpoena: Adrian Lamo 
To} 

ALL IHFo 


BEREIN 
DATE oO 


1 Original — 

From: 

Sent: Tuesday, May 21, 2002 1:39 PM 

To: 

Subject: Grand Jury Subpoena: Adrian Lamo 


AgentL____ 
In response to the grand jury subpoena your Office served on the 
Company, attached are files that were given to by Mr. Lamo as 
These 
records are being produced with the understanding that the information 
will be used solely for your criminal investigation and for no other 
purpose. 


| am sending the two files separately because of storage limitations on b6 -5 

your e-mail account. DUE, 25 
bIE -l 
b3 -1 
b7D -1 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription O6 /0 3/2002 


Ca le Legal 
counsel, WORLDCOM, were telephonically contacted, by 


the interviewing agent. After being advised as to the identity of the 
interviewing agent and the purpose of the interview, the followins . . 
information was obtained: b6 -2,5 
b7C -2,5 
(L_Jstated that WORLDCOM’s first awareness that ADRIAN Lip7D -1 


had gained unauthorized access into their network was a voicemail lert 
for Public Relati ice. oke withL____] 
Securityfocus.com. told that LAMO had 


contacted him and_informed him that he had hacked into WORLDCOM. 


CL] informed that he could put her in touch with LAMO if 
pease Gontacted| | Ld is the 


Information Systems. 


telephonically contacted LAMO at (415) 505-4225. istated that 
LAMO told him he was willing to meet with them and requested them not 
to prosecute him for hacking into their network. A non-disclosure 
agreement was completed by WORLDCOM and LAMO regarding this incident. 
LAMO later revealed information to the press breaking a stipulation 
in the non-disclosure. 


and[_]work forL sid They — with(___d 


On 12/1/2001, they had their first telephone call with LAMO. 
LAMO informed them he had found the open proxy server in October 2001 
but he had other things to do and did not get back to exploiting the 
opening until a few weeks later. 


Through several telephone calls, two (2) on Saturday, December 
1, 2001 and one (1) on Tuesday, December 4, 2001, LAMO provided them 
with the hacking methods he had used to gain unauthorized access into 
their network, the Internet Protocol (IP) addresses he hit and screen 
captures of WORLDCOM’s internal network. LAMO specifically stated 
that he utilized an open proxy on WORLD f i i 


‘It is through 


is information provide: a eam Was pPOSitive 1t was LAMO who 
had hacked into their network. DIE -1 
b7D -1 
Investigation on 06/07/2002 at New York, NY (telephonically) ae 
5 = 
File Date dicated 06/09/2002 Di He 
wy SA e b7E -3 
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Continuation of FD-302 of Conference Call jon 06/07/2002 a, 


Once in their network, LAMO had the power to access WORLDCOM’ s 
system 


LAMO 
had obtained en i i 


LAMO left footprint in files on 


the machines he compromised. 


Cc] stated that LAMO was never an employee of WORLDCOM nor was 


he ever provided authorized access into their network. They were 
familiar with 


because he had hacked them in the past and was 
arrested for his crime. 


WORLDCOM sustained damages totaling approximately $500,000 
resulting from the unauthorized intrusion by LAMO. 


b7E -1 
bo -2,5 
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05/07/2003 
CAH:cah 


sAL—_—ireceived the attached email fon sd 


WORLDCOM/MCI. There was an attached file containing information pertaining to the 
unauthorized intrusion of ADRIAN LAMO into WORLDCOM. 


A copy will be maintained in the file. 
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Attached is the s i ian provided as proof he 
was in th :-) bo -1,2 
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— Original Mes: — 

Sent: Wednesday, Ma ; : 
ces 
Subject Adrian Lamo 


It has been a year since | last spoke with you regarding Adrian Lamo. So 
much has happened in that year on my end as | am sure on your end. So how 
are you doing? We have been so busy here that | had to put this case on 

the back burner for awhile but now we are getting ready to go forward with 

the case and present it toa Grand Jury. | am in the process of getting 
everything organized so that we can do that. With that said | just wanted 

to make sure of a couple of things: 


1, About a year ago you sent me an email_with You told p34: 
me you were going to send a second file. b6 -2 
At the time, | did not have an Tbi.gov account and the 


email account | was using was restricted in size. | have been reviewing bIC -2 
all of the material and | do not see the second email with the file DIE -1 
attached. | was wondering if you still have this file and if so could you 

forward it to me. | believe it is| ; 


2. The second question | have is ael ida 


still working for WorldCom? 


| can imagine how busy you are and | appreciate any help with this 
matter. As | informed you from the beginning | will keep you informed of 
all steps forward in this case. | have a meeting with the United States 
Attorney today to discuss the Grand Jury proceedings. | will email you 
with an update. | believe at this junction things will be moving forward 
very quickly to bring this investigation to a resolution. 


If you need to contact me by telephone my numberis[——sd bé -1 


b7c -1 
Thanks, 
FBI(19-cv-1495)-1775 
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DIE -3 


05/07/2003 


SAI received the attached emails fomL_CSC—S—~™ 
jand| lof THE NEW YORK. TIMES. 


followed up with a question sent to him via email by SAL____ asking if 
am were sent up by ADRIAN LAMO when LAMO gained unauthorized access 6 _1, 2 


r 


to their system. The answer to this question was that no accounts were generated at this time. b7C -1,2 
- t 
i ‘ P ; b7E -1 
LC ___ frottlowed up with several questions stating that the home address and social 
security numbers for all the staff were accessible to LAMO and that is how he was able to gain 
superuser access. 


[_] provided a NEW YORK TIMES articte referencing LAMO. 


Copies will be maintained in the file. 
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In Page 1 of 4 


Subject: Lamo 


Toc) at tecaerron sonra: 
EEREIN 


Sorry | forgot to send this NY Times article to you. . 
1,2 


=| pIC -1,2 


April 28, 2003 


A New Way to Caich a Hacker 
By NICHOLAS THOMPSON 


or a computer security professional, Lance Spitzner has an unusual 
goal: He wants ill-intentioned hackers to steal more Social Security 
numbers and medical 

records. 


Mr. Spitzner, a former Army officer, spends his days working at Sun 
Microsystems and his evenings running the volunteer Honeynet Project, a 
group of security : 

professionals working to track hackers. Until recently, the four-year-old 
nenprofit effort focused on building and monitoring honeypots ? computer 
systems designed 

to be easily penetrated so that Honeynet volunteers can covertly scrutinize 
hackers’ tricks when they break into the systems. 


Now Mr. Spitzner, 32, is focusing his efforts on a different type of 
defense based on the insertion of "honeytokens" into real databases and 
systems. 


Honeytokens are pieces of seemingly enticing information that have no 
useful value. Embedded in ways so that no innocent person should 
accidentally stumble upon 

them, honeytokens trigger alarms when viewed, grabbed or downloaded. For 
example, a bank could insert a fake credit card number into its files and 

hen set up a 

program called a "sniffer" on the network that would send out an alarm if 
anyone touched that particular number. 


The term “honeytokens” was coined on Feb. 21 by a programmer named Augusto 
Paes de Barros who used it in an e-mail message to a list of security 
professionals. 

But the idea is not new. 


t dates back in computing at least to 1986, when Clifford Stoll, a 
programmer at Lawrence Berkeley Nationa! Laboratory in California, buried 
ake records for an 


organization called the Strategic Defense Initiative Network deep in his 


bo -1 
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server. When intruders started downloading the records, and then someone i 
sent a letter to Mr. 

Stoll about the phony organization, he and federal investigators traced the 

intruders to East German and Soviet intelligence agencies. 


Today, the use of honeytokens is not uncommon. For example, ForeScout 
Technologies, based in San Mateo, Calif., has built a commercial software 
program that 

tracks incidents of surreptitious reconnaissance, like port scans ? the 
computer equivalent of someone turning your doorknob to’'see if it is 
unlocked. The program 

will announce a false message of vulnerability to the scanner in the form 
of a honeytoken. It then breaks the connection if the hacker follows up 
with an attack. 


Honeytokens, like their cousins the honeypots, are based on the notion that 
if you build it, they will come. Mr. Spitzner became intrigued by the idea 

of honeypots 

after putting a new computer online at home and watching it get attacked 
within 15 minutes by an automatic program scanning the internet for 
vulnerable prey. 


Many computer criminals break into systems simply for the fun and 
challenge. Others are looking to take over vulnerable systems in order to 
use them as safe houses 

for setting off further, more serious, attacks. Others want to mine credit 
card addresses or steal corporate secrets. According to a 2002 report by 
the Computer 

Security Institute, 90 percent of the 500 corporations, government 
agencies, financial institutions, medical institutions and universities 
surveyed detected security 

breaches during the previous year. 


Honeytokens could also be useful for national security purposes. Michael 
Vatis, director of the Institute for Security Technology Studies at 
Dartmouth University, said 

that the Defense Department could use them to snare people seeking 
unauthorized information on weapons systems. For example, a honeytoken 
could be designed so 

that if it were downloaded and then taken to a different system, it would 
be able to contact its original server each time it was accessed. One way 
to do this would be 

to include code-in the honeytoken that would automatically try to fetch a 
tiny image or some other file based on the home server, making the 
honeytcken “phone 

home" whenever it is opened. 


Honeytokens also can be used to track attacks from within a company by 
people who have passwords to enter the system legitimately. Pete Herzog, 


managing ; 
director of the Institute for Security and Open Methodologies, says that he ns 1 A 
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has used honeytokens to detect when employees ‘llicitly download forbidden 


material. For 
example, he has entered corporate memos with particular typos into private 


databases and then monitored company networks to see where those typos show 


up. 
Tracing these honeytokens, he says, often leads to caches of illegal 
materials stored on the network. 


No one believes that honeytokens can stop all cybercrime. But they could 
offer an upgrade in protection. 


Honeytokens offer another advantage: They help reduce the number of false 
positives in other cyberdefense systems. Like car alarms, intrusion 

detection systems can 

go off so frequently because of accidental trespassing that many security 
administrators ignore the warnings. Honeyiokens, if designed correctly, 
should trigger alarms 

only if there is a malicious attack. 


Hackers, however, are not impressed. Adrian Lamo, who gained notoriety last 
year when he claimed to have broken into the systems of a number of 
companies, 

including Yahoo, says he is not worried. "It's a form of old-school 

security,” he says. “It will work on the people who have been to the old 
schools." 


Mr. Lamo says that he only goes after information that he knows other 
people frequently seek access to and that he runs credit checks fo ensure 
that information he 

uncovers, like Social Security numbers, are real. Mr. Spitzner contends 
that it should not matter whether a hacker bothers to run a credit check 
because the alarm 

should ring any time the decoy record is accessed. 


Hackers can also evade honeytokens by compressing and password-protecting 
the information they steal, thereby changing or hiding the data, like fake 

Social 

Security numbers or types, in memos that the sniffers are searching for. 

And "phone home" honeytokens designed to trace users could be thwarted if 
opened only on 

computers disconnected from the Internet. 


Some experts are also worried about the possibility that using honeytokens 
could violate the federal Wiretap Act, which places limits on intercepting 
and monitoring 

electronic communications. Richard Salgado, senior counsel for the Justice 
Department's computer crime and intellectual property unit, has said that 
very little law 

governs this new area and that security technicians should consult first 
their lawyers. 
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Mr. Spitzner said that he was less worried about the taw than about smart 
hackers. Honeytokens cannot solve all problems, he said. “But they can make 
a very simple 

and powerful tool in a security arsenal.” 


Copyright 2003 The New York Times Company | 
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To: 
Subject: RE: Adrian Lamo 

b6 -1,2 
Ms[ BIC 1,2 
There are numerous areas to access and he appeard fo have tried all or most 
of them. 


The staff list showed home addresses and social security numbers for all 
staff. 

There were metro and op-ed source lists. In some cases op-ed entered social 
security numbers in the source lists. 


Regards, 


b6 -1,2 


; b7C -1,2 
oe Original Message----- 

From ned NYTIMES [mailto[— CSCS 

Sent: Tuesday, May 06, 2003 2:41 PM 

Tot ISYSINYTIMES|] CORPHQINYTIMES; 

Ce! ORPHQ/NYTIMES;, sd 


Subject: Re: Adrian Lamo 


Folks: 


As requested, can you please a to = Agert{ sd 


questions. Her e-mail address is 


Thank you. 


==Forwarded bf NYT/NYTIMES on 05/06/2003 02:36 PM --—- 


SA 
Co NYTINYTIMES” 
cc: 


> Subject: Re: Adrian Lamo 


B6>- hy 2 


To: bIGs Sh a2: 


05/06/2003 01:27. 
PM 


Printed fo SA] soos 
FBI(19-cv-1495}-1783 


| know we have been playing phone tag.= I have a meeting in about 10 
minutes so | will try te call you after ] get out of the meeting.= | have 

been going through all the information and evidence from the New York Times 
and Lexis/Nexus and | have the following questions for the mentioned 
individuals.= | think these will be the final questions for now.= If you 

could just forward them onto the appropriate individuals for comment, | 

would greatly appreciate it. 
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help. 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription _08/29/2002 
SBC, email: —_——— — FI telephone number: 
; was telephonically contacted by the interviewing 


agent. After being advised as to the identity of the interviewing 
agent and the purpose of the interview[____]provided the following 
information: bo -2 


is familiar with unauthorized intrusion of SBC_b b7C -2 
hacker ADRIAN LAMO.|__|Jstated that another SBC employee, Do] 
telephone number [__—_~+&i-s was) approached by a 
Newsbytes reporter. The Newsbytes reporter stated that a white hat 
hacker had contacted him and informed him that he had gained 
unauthorized access to SBC's network. Through emails, the reporter 
identified the hacker as LAMO. The reporter further stated that 
LAMO was able to see all their customers' information. LAMO 
utilized a vulnerability in the dial up pools of SBC's customers. 
He gained access to their network by opening up his Netscape 
browser and typing in a particular Internet Protocol (IP) address 
and keyword. This action caused an URL attack to occur causing 
SBC's index of files to be displayed in LAMO's browser. The index 
feature must be turned on for this to occur. LAMO claimed the 
vulnerability to their system was in their dial up routers. 


LAMO was able to view customer account names, passwords 
and email addresses. Over 3600 customer's were vulnerable to the 
attack, 


The technical team at SBC was able to validate the 
vulnerability LAMO had utilized. They went through their directory 
structure to determine the amount of damage LAMO had inflicted. 

The technical team had to call all 3600 customers individually and 
change all of their passwords. The web server and dial up logs 
were preserved. Some of the IP addresses in the web server logs 
resolved to Kinko's stores. Other IP addresses resolved to dial up 
accounts. 


and[_——«édit had indirect contact with LAMO. They 
decided not to speak to him directly. CO Jis unaware if anyone 
from SBC's Public Relations Department spoke to him directly. 
About two (2) to three (3) weeks later, an individual who works in 
their security department was approached by LAMO via email. The 


bs +2 
bo: --l42 
Investigation on 08/27/02 at New York, NY ({telephonically'b7C -1,2 
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Continuation of FD-302 of on 08 {27/02 “Page 2 b7TE -3 


email stated that LAMO was not satisfied with the way SBC handled 
his unauthorized intrusion announcement and he wanted to speak with 
someone at SBC. They did not contact him at this time. 


In July 2002, LAMO contacted an individual at SBC. LAMO 
Stated that he had further information to provide to SBC. They 
asked him to write to them regarding this new information. LAMO 
never contacted them again. 
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U.S. Department of Justice 


Federal Bureau of Investigation 


In Reply, Please Refer to 
File No. 26 Federal Plaza 
New York, NY 10278 


May 13, 2003 


Senate = = bé -6 


642 Senate Hart Building bIC -6 
Washington, DC 20510 
RE: ADRIAN LAMO, Hack of website www.senate.gov 


Dear[___ 


As per ofir conversation on 12/28/2003, I am writing to 
request infornat yn pertaining the unauthorized intrusion of the’ 


website www.senate.gov in December 2003. Investigation by, the 
FBI+s,Néw York Office has revealed that the inaiviauaiCapany 

(Fast0 }s responsible for this unauthorized intrusion. 

LAMO is a subject of an ongoing investigation by the 

FBI's New York office. LAMO has claimed credit for the 
unauthorized intrusions into The New York Times, Worldcom, 
Microsoft, Yahoo, AOL, SBC Communications and excite@home.com 
through open proxy servers. LAMO uses a “Proxy Hunter" to search 
the Internet for proxy servers that are misconfigured. Once he 
obtains this information, he configures his browser to appear and 
utilize the proxy server as his own. Once the computer intrusion 
occurs, LAMO searches the network to determine if there are any 
other vulnerabilities. LAMO has left backdoors in the networks 
providing him with the ability to enter the network at another 
time undetected. 


The enclosed article dated 12/10/2002 from 
Securityfocus.com states that LAMO gained access to 
www.senate.gov through an open proxy server. TRACY WILLIAMS, 
Director of technology development for the Sergeant-at-Arms, 
blamed the incident on misconfigured devices associated with the 
Web site and that the devices were taken off line until they 
could be configured correctly. 


The FBI's New York Office is requesting all records and 
other evidence~in—the,.possession of www.senate.gov. Such records 
and evidence, include, jbutiere” “Hot: limited to, all accounts, 
computer log Sy files, Cotifiumications, E-mail messages, programs, 
client accotint’ records and files, and any other documents: worked 
on, reviewed‘by, drafted by, edited by, examined by, received by, 
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sent to or pertaining to the unauthorized intrusion by in 
December 2002. The FBI's New York Office is also requesting to 
speak with the individuals who handled the investigation into the 
unauthorized intrusion into the proxy server and web-site as well 
as the individual who had contact with LAMO. 


Your efforts in this matter will help to ensure that 


the privacy and integrity of the information contained within 
www.senate.gov will be maintained. 


SA regarding this 
matter at or email: Please 


note, the aforementioned information is sensitive in nature, not 
meant of external distribution. 


be -1 
bIC -1 


Sincerely, 


Kevin P. Donovan 
Assistant Director in Charge 


By: 


Supervisory Special Agent 
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Senate Closes Accidental Anonymizer 


<< Printable version >> 


By Kevin Poulsen, SecurityFocus Dec 10 2002 1:24PM 
Never let it be said that the United States Senate has done nothing for Internet privacy. 


Network administrators for the U.S. government site www.senate.gov shut down an open proxy 
server over the weekend that for months had turned the site into a free Web anonymizer that 
could have allowed savvy surfers to launder their Internet connections so that efforts to trace 
them would lead to Capitol Hill. 


A proxy server is normally a dedicated machine that sits between a private network and the 
outside world, passing internal users’ Web requests out to the Internet. But they're sometimes 
misconfigured to accept and forward connections from the outside as well, allowing anyone on the 
Internet to route through the proxy with a simple browser configuration change. 


Because server logs at destination sites show only the IP address of the proxy server, and not the 
end user, some hackers and privacy-conscious netizens catalog open proxies and use them to 
anonymize their surfing. 


Tracy Williams, director of technology development for the Senate Sergeant-at-Arms, blamed the 
Senate's accidental public service on misconfigured devices "associated" with the Web site. 
"Those have been taken offline until they can be configured correctly,” said Williams. 


Although open proxies sometime allow unauthorized ingress to an internal network, Williams said 
that in this case the Senate’s networks were not exposed. 


The proxy was discovered by hacker Adrian Lamo, who's still free, and wandering the San 
Francisco Bay Area with a new laptop. 


The hacker said he noticed the Senate Web site's undocumented feature while reviewing a list of 
proxy servers he scanned and cataloged last April. Uncharacteristically, Lamo said he made no 
‘effort to hack the Senate's internal network through the system. Instead, late last week he used it 
to send a message to any administrators monitoring the site. 
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FEDERAL BUREAU OF INVESTIGATION 


Date of transcription 12/30/2002 


Senate Legal Counsel, 642 Senate Hart 
Building, Washington, DC 20510, telephone number . . 
was telephonically contacted by the interviewing agent. After bo -6 . 


being advised as to the identity of the interviewing agent and the b7C -6 
purpose of the interview,| | provided the following information: 


stated that the website www.senate.gov was recently 
hacked. stated that she has spoken to the technical 
individuals involved in investigating the unauthorized intrusion 

into the website.L_d has requested the FBI to send a request in 


writing to her enabling the interviewing agent to speak with the 
individuals involved in the investigation. 


b3 -2 

ae . b6 -1 
Investigation on 12/28/02 at New York, NY {telephonically} bIc -1 
File Date dictated 12/30/02 DIE -3 


ty SA 


‘This document contains neither recommendations nor conclusions of the FBI. It is the property of the FBI and is loaned to your agency; 


it and its contents are not to be distributed outside your agency. FBI(19 cv: 1495) 1795 


Calpe 
UPLOADED ~ WALL, ——— 


WITH/TEXT. 
& THIQUT TERT. 


r ; r FBI(19-cv-1495)-1796 


05/13/2003 
CAH:cah 


slid has made the following telephone contacts and emails on the 
dates specified for the above mentioned case number: 


05/13/2003 Called and left message fL_——Ss—~—INCECC~C~C~Ci«@dS regarding 


technical contact for Lamo hack 
b6 -1,2 


05/13/2003 The New York Times, contacted informed of upcoming complaint b7C -1, 2 
and asked fo tocontaeg—— ef 
05/13/2003 [____|sBc[______ J oalled after I left hima message. Stated he 


would send me the logs I a regarding Adrian Lamo. He left his email address of 


S. sen{_ ba email. A copy is attached. 


ye yy ae 
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(J 05:10 pm 5/13/2003 -0400, Questions about Lamo 


To 

From: SA] 

Subject: Questions about Lamo BLL Te 
Ce: BEREIN I 
Bec: DATE 2 
Attached: 


Here are a couple of questions | came up with when reviewing the information you provided to 


me last August. lam sorry if some of them are repetitive | am just trying to get things in order. | 
think this will be it unless | have some questions about the logs. 


2. Can you find out if anyone in your PR Dept spoke with him directly about the Feb 2002 incident? 


3. Do you have any of the emails that Lamo sent to yo ndlor the individual in the security 


unit? , b6 -1,2 
b7C -1,2 
b7E -1 


6. Who from Newsbytes 1st contacted you." ___Jand on what date? 


Ss 


I think that is it. Thank you again for your help. 


Best wishes, 


: be -1 
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05/13/2003 
CAH cah b6 -1,5 
~ b7c -1,5 
s oniacted —tetephone numbe¢——] 3° 


regarding the subpoena request for information pertaining, 7p _ 3 
to ADRIAN LAMO, tated that the case is assigned to a case worker and that he 
| would have the case worker contact me today regarding this matter. 


FBI(19-cv-1495)+1800 


MAY 7 2 9008 b3 -2 


Cts 


cat eae a 


See Oe 1 
( b7C -1 
B7E=3 
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SEREIN 1S 
05/20/2003 CRITE O03 b3 -2 


CAH:cah bo -1 


b7c -1 
The attached list and CD-Rom contains files that were extracted from a TAR file sent to nae 3 


us by Lexis-Nexus regarding the computer intrusion of ADRIAN LAMO. 


A copy will be maintained in the file. 
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FEDERAL BUREAU OF INVESTIGATION b7c -1 


Date of transcription 06/32/2003 


General Counsel, T-Mobile, 4120 


International Parkway, Suite 1000, Carrollton, TX 75007, telephone 
facsimile (972) 930-4742, email: | ee 
was telephonically contacted by the interviewing agent ,D6 -6 


After being advised of the identity of the interviewing agent and b7C -6 
the purpose of the interview,> provided the following 
information: 


T-Mobile provides the Wi-Fi Internet service for 
Starbucks. In order to use a T-Mobile hotspot at a Starbucks you 
must either be an existing T-Mobile hotspot customer or you can 
provide Starbucks with a credit card number and be a "pay as you 
go" customer. All customers receive a userid and password to sign 
into the Wi-Fi service.[___|stated to review the website www.t- 
mobile.com/hotspot for more details regarding the service. 


unable to provide] - _¢ 
_— stated he would need to refer me toa be -6 
echnical person for this answer. b7C -6 
bIE -1 

b3 -1 

b3 -2 

Investigation on 06/12/2003 # New York, NY (telephonically) bo -1 
b7c -1 

File # Date dictated 06/12/2003 bIE 3 

ty SA 


This document contains neither recommendations nor conclusions of the FBI. It is the property of the FBI and is loaned te your agency; 
it and its contents are not to be distributed outside your agency. 
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06/11/2003 
CAH:cah 


be -1,2 
ILOCK/LINE, INC, telephone number LJ was bIC -1,2 
telephonically contacted by SAL _——_regarding the hack by ADRIAN LAMO of b3 -2 . 
CINGULAR. LOCK/LINE, INC hosts the servers for CINGULAR that were hacked byLAMO, P/E ~3 
o their General Counsell____————_] telephone 
stated that he was the technical person involved in the 
stated he is familiar with LAMO's past hacking 


hack by LAMO on their servers. 
activities, 


SAL___ attempted to contact{__Jout met with negative results. CL Hitt 


be out of the office until 6/13/2003. 
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Lamo Hacks Cingular Claims Site 


By Christopher Null @ | B® Atso by this reporter. 


10:55 AM May. 29, 2003 PT 


Cingular can issue insurance to its mobile-phone customers to protect them against loss and 
damage, but it apparently can't ensure that hackers won't have full access to their personal 
data, 


Adrian Lamo, a hacker who in the past has broken into The New York Times and Yahoo, 
found a gaping security hole in a website run by a company that issues the insurance to 
Cingular customers. By accessing the site, Lamo said he could have pulled up millions of 
customer records had he wanted to. 


He said he discovered the problem this weekend through a random finding in a Sacramento 
Dumpster, where a Cingular store had discarded records about a customer's insurance claim 
for a lost phone. By simply typing in a URL listed on the detritus, Lamo was taken to the 
customer's claim page on a site run by lock\line LLC, which provides the claim 
management services to Cingular. 


Normally, this page should have been reachable only by passing through a password- 
protected gateway, but by simply entering the valid URL, Lamo discovered that individual 
claims pages could be accessed, no password authentication needed. 


Each page contained the customer's name, address and phone number, along with details on 
the insurance claim being made. Altering the claim ID numbers (which were assigned 
sequentially) in the URL gave Lamo access to the entire history of Cingular claims 
processed through lock\line, comprising some 2.5 million customer claims dating back to 
1998. 


Lamo said the hack was similar to his discovery of a security hole at Microsoft in October 
2001, where the server was configured to assume that if'a user could reach a certain URL 
that was otherwise unpublished on the Internet, that user must be authorized to do so and 
must already be logged in. 


As with his other hacks, Lamo said he had no intent of profiting from the exploit, just 
pointing out a security flaw. 


Lamo first exposed the problem to Wired News. After this reporter pointed out the flaw, 
Cingular and lock\line closed the hole by Wednesday morning. 


Cingular spokesman Tony Carter said lock\line has enabled password protection for the site 
and has now incorporated “obfuscation techniques” that scramble URLs so that, even in the 
event of a site compromise, additional records should not be easily accessible. 


bo 
b7C 


oul 
ak 
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Lock\line spokesman Reed Garrett confirmed the hack. Carter noted that no financial 


information or social security number data were taken and the information wasn't even 
available to lock\line. 


"We screwed up,” said Carer. "Our policy is that any time there is a document with 
customer information on it is to be shredded. They've been trained on this. They just didn't 
do it. There's no excuse for it.” 


The event highlights the problems of managing vendor relationships when customer 
information needs to be shared but each company has different processes for handling that 
information. Carter says Cingular has neatly 40,000 vendors, and staying on top of them all 
is an "arduous" task, which the company continues to evaluate. 


Jerry Brady, CTO of security services company Guardent, said incidents like the Cingular 
episode are not that uncommon. 


"This usually happens because people whip together quick-and-dirty front ends without 
much thought fo the construction of the data,” he said. "You see this all the time, not just in 
the private sector, but in government systems as well. You just can't expect that outsourcer 
{to) treat confidential data the same way as the firm. They have no vested interest in 
worrying about the customer.” 


Lamo noted that outsourcing arrangements continue to yield a treasure trove of weak links 
in electronic security. Said Lamo, "As companies begin to outsource more and more of their 
businesses, the line of where security begins and ends gets blurry." He added that in this 
case, the security was “tremendously bad.” 


The Cingular discovery is the latest in a line of exploits from Lamo. In the past few years, 
Lamo has found his way into the database containing sources for the The New York Times, 
has altered news stories on Yahoo and has repeatedly compromised AOL. Companies have 
contemplated suing him, but security experts have lauded his efforts for pointing out flaws. 


Lamo, 22, doesn't have a permanent address. He wanders cross-country on foot or by public 
bus. Spring and summer usually bring him to Northern California. Until recently, he used. 
terminals at Kinko's to perform his hacks. He has graduated to using a Wi-Fi-ready laptop at 
Starbucks to do his work. 


For Lamo, there's a bigger issue at stake with the Cingular hack. 


"If only they had recycled the document instead of throwing it away," he quipped, "this 
wouldn't have happened." 
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Ld 06:24 piv’ 6712/2003 -0400, Link to article 


From: SA 

Subject: Link to article 

Cc: 

b6é -1,6 
b7c -1,6 


a 


It was a pleasure speaking with you today. Here is the link to the story | informed you of today. 
Obviously this is an ongoing investigation so if you could be discrete about my calling you it would 


l appreciate your assistance with this matter and if you ever need anything please let me know. 


oye eat 
Thanks. be -1 


= BIC -1 


Link: http/Avww.wired.com/news/privacy/0,1848,59024,00.html 


bé -1 
bb? lL 


Printed for SA 1 
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Locations Sign Up Support Contact Us Abo 


Get More from Your Mobile Life. 


T-Mobile HotSpot provides high-speed Wi-Fi wireless Internet access in public locations such a: 
American Airlines Admirals Clubs, Starbucks coffeehouses and Borders Books & Music stores. 


This robust network is made for speed with a full T1 connection at every location. Using either a 
PDA that is Wi-Fi 802.1 1b wirelessly-enabled, download your email attachments, watch a five w 
listen to streaming audio. Connect wirelessly, effortlessly to the world's largest public Wi-Fi netw 


Right away, you'll see ihe benefits of a service that works to ensure a smooth connection to you 
and seamless integration with your existing Internet tools. What you won't see is a change in the 
service when you use it in different locations. 


FAST - Connect to the Internet or your corporate intranet at blazing fast speeds ~ 
T-Mobile provides a full Tt connection to every location. 


RELIABLE « Get the same high quality service in every location, giving you the peace of mind t 
matter where you go, you'll experience the world class benefits of T-Mobile. 


AFFORDABLE - Use if a littie. Use it a lot. Either way, there's a plan for you. Sign up for an unli 
monthly subscription pian starting at $29.95 or pay as you go for only $0.10 per minute. 


CONVENIENT - With T-Mobile HotSpot, there are no busy signals, no searching for phone jack: 
of all, no waiting. Connect easily, wirelessly, instantly. 


@ sign Up. 


T-Mobile USA : ©2002-3 T-Mobile USA, Inc. : Terms of Use : Terms & Conditions : Privacy Policy : HotSpot Terms & Conditions : Hott 
T-Mobile International : Austria : Czech Republic : Germany : Netherlands : Poland : Russia : United Kingdom 


See all T-Mobile Interna 
b6 


b7C 
Get more frorr 


-l 
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Services 


Get More time in your day. . 


T-Mobile HotSpot offers a full line of service plans io meet the needs of any mobile user. Choos 
monthly subscription plans, a prepay option or a Pay as you go plan. 


*PlanName™ Price “Included” Add'l “Included” Other 
Minutes Minutes _Data information 
Transfer 


‘Wi-Fi Subscription Plans 
For those who expect to connect regularly, we offer two unlimited Subscription plans. 
“Unt fimited ™ $29.99 “Unlimited.” N/A “Unlimited™12 month contract required. 


" per 
National nth Includes unlimited minutes and date 
at all service locations nationwide. 
pence ans Early termination fee of up to $200 < 
>> What you need You may terminate service without 5 
early termination fee if you cancel w 
>» Corporate accounts first 30 days after plan commencem 
‘Unlimited ” $30.99 “Unlimited” N/A “Uniimited"One month commitment required. 
National - per 
month to month Includes unlimited minutes and date 
month at ail service locations nationwide. 


An administrative fee of $26 applies 
terminations within the first 12 mont 
plan commencement. You may ter 
service without paying an administr< 
you cancel within the first 30 days a 
commencement. 

‘Wi-Fi Prepay Plans 

Give the Wi-Fi service a try with a national, refillable prepay plan. 

"Prepay 300 ™ $50.00 300 "300 minute “Unlimited” No Minimum commitment. 

fefill is $50 
t Sign-up and refit online at your con 


Minimum user session is 10 minute: 
fogin 


“WI-FI Metered Plans 
if you expect to check email or download files. only occasionally, try a pay as you go plar 
“Pay as you $0.10 NIA” $0.10 per “Unlimited”, No term commitment, 
go per additional 
minute. minute. Minimum user session is 60 minute: 
login. 


Use at any service location nationw 


>» Addtional terms and conditions apply, click here to see Rate Plan 


G 


» Sign Up 


if your laptop or handheld is already Wi-Fi 802.11b enabled, you can also sign up by simply jau 
your browser af thousands of HotSpot locations. 
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= T-Mobile USA home 


oF - -Mobile-HotSpat? Get more frorr 
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Services 


it's easy to get started. 


‘ 
Connecting to the T-Mobile HotSpot network is simple. Here's what 
you'll need: 


1. A laptop, pocket PC or handheld device with Wi-Fi 802.11b 
wireless capability. Your existing device may already have this 
capability built-in. If not, you can purchase a Wi-Fi 802.116 wireless 
networking card for most laptops and many handhelds at any major 
electronics retailer. 


Wireless Cards for Laptops 


» About ihe service DLink Wireless LAN PC Card 11MBPS 
» Service Plans {DWL650) 
= What you need 


>> Corporate accounts 


Netgear 11Mbs - 802.1 1b Wireless PC 
Card for Laptops 


Featured Handheld Device 
Sharp Zaurus SL-5500 


Using a Wireless LAN Compact Flash 
card with your Zaurus will allow you fo 
use Instant Messaging, email, the. 
internet, and various other applications 
via the T-Mobile HotSpot network. 


Several CompactFiash cards are 
available from different manufacturers. 
Visit 
http/Avww.myzaurus.com/buyaccess.asp 
for a complete list of cards you can use 
with the Zaurus. 


Compact Flash cards. 


Netgear MA701 CompactFlash Card ~ 
802.1 1b 14 Mbps wireless card for 
handheld devices. 


When your device is wireless-enabled, you will need to set your SSID (or network identifier) tot 
Refer fo your wireless network card documentation for specific instructions on how to make this 
or visit customer support. 


2. Web Browser - You can use any standard Internet-ready browser on any operating system. | 
additional software is required. 


3. Service Plan - T-Mobile HotSpot has a full tine of service plans to meet the needs of any mo! 
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from small bundles of minutes for the occasional user to unlimited minutes of Internet access. S 


while you're here or launch your browser at any of our service locations and sign up for one of 0. 
plans. 


Now you're ready to go. Visit any of the thousands of T-Mobile HotSpot service locations, Jauncl 
browser, log-in and you're connected. It's that simple. 


if you have more questions:on how to cannect, we're here to help. 


T-Mobile USA ; ©2002-3 T-Mobile USA, inc. : Terms of Use : Terms & Conditions : Privacy Policy : HotSpot Terms & Conditions ; Hatt 
T-Mobile International : Austria : Czech Republic : Germany : Netherlands ; Poland : Russia : United Kingdom 
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06/12/2003 
CAH:cah 


The attached article from Wired News, titled "Lamo Hacks Cingular Claims Site" was 
written on 5/29/2003 stating that ADRIAN LAMO has hacked CINGULAR using a T-Mobile hot 
spot at Starbucks. 


b6 -1,5 
The attached information pertaining to T-Mobile hot spot services provided to b7c -1,5 
STARBUCKS was obtained from t-mobile.com/hotspots. It states that an individual can either 63 -2 
have a monthly account with T-mobile or a pay as you go account to utilize their hot spots b7E -3 


throughout the country including STARBUCKS. 


The attached email was sent a General Counsel, T-Mobile regarding 
the article in Wired News. 
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06/13/2003 
CAH:cah 


s4{_————=sdcontacted1____—_—_] Senate Legal Counsel, 642 Senate 
Hart Building, Washington, DC 20510 regarding the letter sent to their office on 5/13/2003 
tequesting information of the unauthorized intrusion of ADRIAN LAMO into senate. gov, 
stated that their technical people told her that 


b6 -1,6 
b7c -1,6 
b7E -1 


derstood this concept and stated 
that I would have to speak to the technical people about this further. 


[further stated that her technical people did not like the term unauthorized intrusion 
used in the letter I sent to them. I explained tol __] that in the article the Director of 
Technology, TRACY WILLIAMS stated that their proxy servers were misconfigured allowing access 
to individuals who were not authorized to use them. WILLIAMS stated the servers were taken off- 
line once this was discovered. I explained tol___]that that is what is meant by unauthorized 
intrusion. 


CL went on to explain that the hack of LAMO or anyone else into senate.gov is not 
important due to the fact that the computers do not hold pertinent information. I asked Ht 
it was the policy of www.senate. gov to allow hackers or anyone to gain full access to their proxy 
servers and web servers to use them, as they deem appropriate. She stated she was not sure if this 
was their policy and I would need to speak to the technical people about the policy. 


[Prvteined tha rd thatthe 6-6 


technical people knew that it was an open proxy server that could be accessed by anyone and they b7C —6 
were working on this problem. I asked her if they knew about the problem why were they not pulled b7E —1 
off-line prior to the disclosure by LAMO. [ ptated I would need to speak to the technical 

people regarding this matter. 


CL |statea that she believed the technical people only spoke with the reporter and that no contact 


was made with LAMO directly. [stated that she would make arrangements to have the 
technical people involved in this matter call me, when she had time. 
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On 6/20/2003, SAL______] received the attached email fro: 
from SBC, Inc. The email contained files pertaining to the hack of ADRIAN LAMO of SBC. b6 -1,2 


b7c -1,2 
Copies will be maintained in the file. b3 -2 
b7E -3 
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Finally got everything approved to release information on the Lamo Case to 
you. The attached files should be helpful. If you have questions please 


oi 


let me know. 
Per your request here is my address. b6 -1,2 
Bier =14.2 

2600 N. Central Expressway BIE -1 

Suite 528 

Richardson TX. 75080 

Thanks 

Corporate Information Security 

b6 -1,2 
b7C -1,2 
bI7E -1 
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Automated Serial Permanent Charge-Out 
FD-5a (1-5-94) 


Description of Document : 


Date: 07/08/03 Time: 08:53 


Type : INSERT . b3 -2 
Date : 07/07/03 . bé -1 
To  : NEW YORK Co 7 
From : NEW YORK ; b7C -1 
Topic: CHECKS ON 81 INDIVIDUALS W/ATTACHED RESULTS b7E -3 


Reason for Permanent Charge-Out: 
inadvertently uploaded 


Transferred to: ae 


FBI(19-cv-1495)-1885 


a ‘ 
(Rev, 01-31-2003) 


ATE 02-1. BE xe b6 - 
FEDERAL BUREAU OF INVESTIGATION BIC 
Precedence: ROUTINE Date: 07/18/2003 
From: Cincinnati 
Squad 4/Colw 
Contact: 
Approved By: 
Drafted By: [__rrew b3 -2 
bo -1 
Title: ADRIAN LAMO; bIE -3 


New. York Times~Victim; 
Computer Intrusion; 
OO: NY 


Synopsis: To respond to lead set by New York. 


Details: Vincent Glaze died on 09/03/1998. He is interred a” 
alongside his wife, Dorothy S. Glaze, at Huntsville Cemetery 
McArthur Township, 3691 Road 37 West, Huntsville, OH, 43324, 

(937) 686-2766. 


Cincinnati considers lead covered. 


y 99 MEW we. Fpl(is-cv- 1495)-1 


1 
-1 


88 


To: =, Cincinnati 
Re: 07/18/2003 


LEAD (s): 


1 ope tee 
bTE -3 


Set Lead 1: (Info) 
NEW YORK 
AT NEW YORK, NY 


For information only. 


+” 
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SECURITYFOCUS NEWS 


Adrian Lamo charged with computer crimes 
By Kevin Poulsen, SecurityFocus Sep 5 2003 10:11AM 


FBI agents armed with a federal arrest warrant out of New York were searching for Adrian Lamo 
Thursday, SecurityFocus has confirmed. 


Lamo has been charged in New York under Title 18 U.S.C. 1030 and 1029, according to deputy federal 
public defender Mary French, who says she's spoken with one of the FBI agents that were searching for 
Lamo. The federal laws prohibit unauthorized access to a protected computer, and illegal possession of 
stolen "access devices" -- a term that encompasses passwords, credit card numbers, and the like. French 
did not know what the specific allegations were, because the charging document is sealed, 


Two agents visited the home of Lamo's parents, Mario and Mary Lamo, near Sacramento, California, 
Thursday afternoon, Mary Lamo said Thursday. "They wouldn't tell us anything but that they had an 
arrest warrant and they wanted to come in," she adds. 


When she demurred, the agents vowed to return with a search warrant, then began overtly watching the 
house from parked cars, she said. "They followed me when I went out, so they're not hiding it." 


Friday morning, a spokesperson for the U.S. Attorney's office in New York confirmed that the office had 
an open case file on Lamo, but otherwise declined to comment. 


Lamo frequently stays at his parents' home, but he was not there at the time of the FBI's visit, and has 
not returned since. His mother contacted the Federal Public Defender's office in Sacramento, which has 
agreed to handle his surrender. 


' : 
Thave always said “If he's arrested or turns himself in in this district, we will represent him for 


that actions have the initial proceedings," French said Friday morning. "I haven't had any direct 
consequences, and _ contact with him yet." 
this is something 


In a telephone interview Thursday, Lamo said he was in California, but did 
not plan to turn himself in until after conferring with the attorney. The hacker 
was quick-witted and seemingly in good humor, with only a trace of 
happen.’ nervousness in his voice. He quipped about the proper etiquette of being 

-- Adrian Lamo arrested by the FBI, and suggested jokingly that SecurityFocus should 
purchase the publication rights to a favorite photo. He said he was in the 
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aware might 
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company of a camera crew producing a television document&ry on hackers. 


"I have always said that actions have consequences, and this is something that I was always aware might 
happen,” said Lamo. “I don't intend to deny anything that I have done, but I do intend to defend myself 
vigorously.” 


The 22-year-old Lamo has become famous for publicly exposing gaping security holes at large 
corporations, then voluntarily helping the companies fix the vulnerabilities he exploited -- sometimes 
visiting their offices or signing non-disclosure agreements in the process. 


Until now, his cooperation and transparency have kept him from being prosecuted. Lamo’s hacked 
Excite@Home, Yahoo, Blogger, and other companies, usually using nothing more than an ordinary Web 
browser. Some companies have even professed gratitude for his efforts: In December, 2001, Lamo was 
Praised by communications giant WorldCom after he discovered, then helped close, security holes in their 
intranet that threatened to expose the private networks of Bank of America, CitiCorp, JP Morgan, and 
others. 


Lamo believes the arrest warrant is for his most high-profile hack. Early last year he penetrated the New 
York Times, after a two-minute scan turned up seven misconfigured proxy servers acting as doorways 
between the public Internet and the Times private intranet, making the latter accessible to anyone 
capable of properly configuring their Web browser. 


RELATED STORIES 
« Panel Debates Hacker 


Once inside, Lamo exploited weaknesses in the Times password 


Amnesty policies to broaden his access, eventually browsing such disparate 
« New York Times Internal information as the names and Social Security numbers of the paper's 
Network Hacked. employees, logs of home delivery customers’ stop and start orders, 


. 


Who Is Adrian Lamo? instructions and computer dial-ups for stringers to file stories, lists of 
» Yahoo! News Hacked 


contacts used by the Metro and Business desks, and the “WireWatch" 
» Proxy Exposes 


Excite@Home Data keywords particular reporters had selected for monitoring wire 
services. 


He also accessed a database of 3,000 contributors to the Times op-ed page, containing such information 
as the social security numbers for former U.N. weapons inspector Richard Butler, Democratic operative 
James Carville, ex-NSA chief Bobby Inman, Nannygate veteran Zoe Baird, former secretary of state 
James Baker, Internet policy thinker Larry Lessig, and thespian activist Robert Redford. Entries with home 
telephone numbers include Lawrence Walsh, William F. Buckley Jr., Jeanne Kirkpatrick, Rush Limbaugh, 
Vint Cerf, Warren Beatty and former president Jimmy Carter. 


In February, 2002, Lamo told the Times of their vulnerability through a SecurityFocus reporter. But this 
time, no one was grateful, and by May federal prosecutors in New York had begun an investigation. 


"I think this is unsporting of the New York Times,* Lamo said Thursday. 
Lamo's mother said she has no opinion on her son's exploits. She's just worried about him. 


“I don't really know much of anything about computers," says Mary Lamo. “He's my son. Right now, all I 
can worry about is how I can help him." 


"I hope there will be a time when Adrian can do positive things that everyone agrees are positive,” she 
adds. 
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Adrian Lamo Charged With Hacking 


Posted by Cowboy Neal on Saturday ot 
September 06, @10:41AM eet 
from the high-profile-hacking dept. re 


retrol28 writes “Drifling around the US i 
from state-to-state, Adrian Lamo has : 
been making news for some time with 
his ‘White Hat' hacking exploits. His 
highest-profile hacking has included 
Excite@Home and Yahoo. After he 
would break into a network, he would 
call up those in charge of it and help 
them fix the holes. So far, it has earned 
him praise from the administrators of 
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: x is out how deep into their system he got.” 

Bugs 

Microsoft’ 

Stories 

Old Stories 

Old Polls 

Lopies 

Hall of Fame 

Submit Siory 

\hout 

Supporters 

Corie 

Awards 

: Get your FREE 6-month trial now. 

Services 

Toby re 

Advertising : CLICK FOR oe 

ee Pee TB IAL a” Sreatll frsinesss Seve, YEN. 
< Bruce Schneier on Security Tradeofls | FCC Ponders Removing Morse Code Reqs lor 
Amateur Radio Licenses > 
Aditi Pmo Chareed With Hacking bom Create aa Account Top S04 Gonmnnents ¢Spill ur SW. 
hh Mo eet tas 
FBI(19-cv- 1495)-1893 
http://slashdot.org/articles/03/09/06/1325221.shtml?tid=1 23 &tid=126&tid=1 72&tid=99 9/8/2003 


Slashdot | Adrian Lamo Charset Hacking - @ Page 2 of 33 


LILA Un | weaiua A7ipeussIt 

4: 353 comments ‘vilThreaded iv || Oldest First ipa 
i [ Reply 

‘The Fine Print: The following comments are owned by whoever posted them, We are not responsible for them in any way. : 


@)}2 
« Fil? Stops. R by Anonymous Coward (Score:2) Saturday September 06, @10:43AM 


Threshold: 


« Re:Fit? Stops. R by Anonymous Coward (Score:1) Saturday September 06, @04:15PM 
by jbottero (Score:1) Sunday September 07, @01:33AM 

s. R. by krymsinO1 (Score:3) Sunday September 07, @02:26AM 

2 Stops. R by zootread (Score:2) Sunday September 07, @10:12AM 
= Re:Fit? Stops. R by zootread (Score:2) Sunday September 07, @10:24AM 
o Lreply beneath your current threshold. 


The Real Problem (Score:5, Funny) 
by Goo, ce (687626) * <jeff@goo.cc> on Saturday September 06, @10:43AM 
(#6887104) 

‘hitp://g00.ce/) 
Maybe the real problem that the New York Times has with Lamo is that he was able to 
read stories without having to register for a free account. (Hell, that stupid registration 
requirement make me want to hack them too.) 

[ Reply to This ] 


Re:The Real Problem (Score:5, Funny) 

by Surak (18578) * <surak@mailbIHORS ... minus herbivore> on Saturday 
September 06, @10:47AM (#6887125) 

(bttp://colonialfamilies.cony | Last Journal: Thursday September 04. @03:14PM) 

Yep. That whole &partner=GOOGLE thing will get the FBI after ya. Watch out! 
[ Reply to This | Parent ] 


o Re:The Real Problem by Anonymous Coward (Score:2) Saturday September 06, 
@11:40AM 

o Re:The Real Problem by shfted! (Score:3) Saturday September 06, @01:01PM 

o Re:The Real Problem by crucini (Score:2) Sunday September 07, @01:44AM. 


Re:T eal Problem by Anonymous Coward (Score: 1) Saturday September 06, 
AM 
« Re:The Real Problem by SunPin (Score:2) Saturday September 06, @11:11AM : 
Re:The Real Problem (Score:5, Informative) 
by FsG (648587) <‘ten.ecivrestob' ‘ta’ ‘gsf> on Saturday September 06, 
@11:33AM (#6887374) 
(hitp://fsg.botservice net/) 
No need to look for new exploits when the existing ones suffice.. 
1. Click on URL, you're redirected to registration/login page 
2. Go to URL bar, replace "www" with “archive” in the URL, leaving the rest 
alone, and hit ENTER 
3. The system will bounce you around a few erroneous URLs, before retuming 
you to the homepage 


A ATI NVT Bale yoill nave dark withant vaniotvatinn thane ta a enosiel nantbia 
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SOMA ANE 4 ithno wi UUW WULD WELUUUL 1UgIDUaLUL, Latin LU @ ppuviar LuURIL 
set by the bouncing process . 
[ Reply to This | Parent ] 
o Re:The Real Problem by twofidyKidd (Score:1) Saturday September 06, 
@01:29PM 
o Re:The Real Problem by Anonymous Coward (Score:1} Saturday September 06, 
@02:50PM 
o Re:The Real Problem by dmuth (Score:2) Saturday September 06, @06:07PM 
© 2 +xeplies beneath your current threshold. 


@11:34AM 
e Re:The Real Problem by Anonymous Coward (Score:1) Saturday September 06, 
@12:52PM 

© i yeply beneath your current threshold. 
« Re:The Reai Problem by Digitalexikon (Score:1) Saturday September 06, @04:17PM 


e And good riddance. by JeffTL (Score:3) Saturday September 06, @10:46AM 


Re:And good riddance. (Score:5, Insightful) 
] by SerpentDrago (703376) * on Saturday September 06, @10:52AM 
(#6887138) 
If you ask and tell theam your going to try to hack. Then they will tighten 
security. Thats exactly why you can't tell theam. You have to just do it. ata 
random time without theam knowing , then see if they catch it. Thats the only 
true way to "test" Do it Blind or it is not real. A BlackHat will never ask or tell 
you when. 
[ Reply to This | Parent ] 
o Re:And good riddance. by the_2nd_coming (Score:1) Saturday September 06, 
@11344M 
Re:And good riddance. (Score:5, Insightful) 
by Shoten (260439) on Saturday September 06, @11:46AM (#6887427) 
I think you're confusing what Lamo did with something that the NYT 
actually gave permission for. I agree with you, that a penetration test 
should be performed in such a way as to be unexpected, so paranoid 
admins can't do stupid things to improve the results (like turn off all 
inbound access for a day). But this wasn't a penetration test, it was nothing 
more than an uninvited and deeply illegal intrusion plus some spin control 
for the media. 


Tknow a lot of people look at it and say, "Oh, but he had good intentions, 
that makes it ok!" It's not really like that...we don't KNOW his real 
intentions at all, just what he SAYS his intentions are. But, if someone 
owned your network, would you just trust them when they say they didn't 
do anything more insidious than they told you about? I wouldn't, and the 
resulting cleanup to make sure that nothing more was done is an 
expensive and dismuptive process. This is part of why the damages for 
relatively minor hacks end up being so enormous in many cases. 
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We're always pushing ourselves to question what we're being told by the 
media, by our leaders, by our educators, by big business.,.we should really 
question anyone who might have an ulterior motive. 


[ Reply to This | Parent ] 
= Re: hacking and intentions.... by King TJ (Score:2) Saturday September 


06, @01:28PM 
« Re: hacking and intentions... by parliboy (Score:3) Saturday 
September 06, @03:00PM. 


» Re: hacking and intentions... by Quothz (Score:3) Saturday 
September 06, @06:39PM 


= Re: hacking and intentions.,.. by Tadghe (Score:3) Saturday 
September 06, @08:19PM 
= Re: hacking and intentions... by RancidBeef (Score:1) Saturday 
September 06, @08:54PM 
« Re: hacking and intentions... by aricusmaximus (Score:1) 
Saturday September 06, @11:36PM 
« Lreply beneath your current threshold. 
« Re:And good riddance, by frater_corvus (Score:2) Saturday September 06, 
@09:34PM 
= 3 replies beneath your current threshold. 

Good intentions don't mean it is legal (Score:5, Insightful) 
by rblancarte (213492) on Saturday September 06, @11:50AM 
(#6887448) 
(http://www. blancarte.com/ron | Last Journal: Thursday January 23, @11:31PM) 
Drago - you are a fool. If you are hacking people's systems without their 
permission, YOU ARE BREAKING THE LAW. PERIOD, END OF 
STORY. If people were allowed to say "Well, I was doing it so I could 
elp their security", then you would have all sorts of Blackhats hacking 
systems, and then claiming, "I was going to help, but you arrested me 
first." No. 


Look, there are ways to do security checks like this, without the security 
teams knowing that you are doing it. Get permission, make sure that no 
one is tipped off, and then test the systems. 


f there is one thing I can't stand it is people doing illegal actions and then 
claiming they are doing it for the greater good. This type of action cannot 

be condoned. Sure, you might be doing help, but you also might not. 
Reply to This | Parent ] 
= Re:Good intentions don't mean it is legal by rwise2112 (Score:1) 
Saturday September 06, @12:52PM 
= Re:Good intentions don't mean it is legal by ThePorkHawke (Score:1) 
Saturday September 06, @01:13PM. 
« Re:Good intentions don't mean it is legal by rikkards (Score:2) 
Saturday September 06, @01:27PM 
« Re:Good intentions don't mean it is legal by MoneyT 
(Score:2) Saturday September 06, @01:30PM. 

= Re:Good intentions don't mean it is legal by 
tikkards (Score:2) Saturday September 06, @03:21PM 

\d intentions don't mean it is legal by staticdragon 
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(obuITtL) oauUay SepicNDEL UL, WELLE 
Re:Good intentions don't mean it is legal (Score:4, Funny) 
by Kenja (541830) on Saturday September 06, @03:00PM 
(#6888534) 
(http://www. klassy.com/) 
Ifthe post man goes into your house, rumages around and 
then leaves you a note that your underwear is dirty and your 
out of milk he should be arested. 
[ Reply to. This | Parent 


= Re:Good intentions don’t mean it is legal by lIus10n 
(Score:2} Saturday September 06, @06:41PM 
= reply beneath your current threshold. 

« Re:Good intentions don't mean it is legal by FussionMan (Score:1) 
Saturday September 06, @01:55PM 
Re:Good intentions don't mean it is legal (Score:5, Insightful} 
by Izago909 (637084) on Saturday September 06, @02:59PM 
(#6888530) 
So let's throw the (relatively) most desirable type of hacker in jail so 
he gets out of the way of the black hats. This is some bullshit logic. 
Regardless of what his ‘true’ intentions were, his track record speaks 
volumes: He's always come clean with people. 
While network admins are busy giving themselves kudos for 
integrating Microsoft's latest and greatest secure systems, he is busy 
looking for holes. Without these types of white hats, all the world 
would have is insecure networks remaining open to black hats until 
they discovered the holes the really hard way. 
Screw all the evil, sinister things you think his ‘true’ intentions are. 
He and his counterparts have potentially saved your company 
millions in expenses when some black hat could have made off with 
gigabytes of confidential data. Think these white hats are bad? Wait 
until you have class actions out the wazoo because many of your 
customers are now facing the business end of your over confidence. 
Screw modern hacking laws because they are stale and outdated. 
People always like to tack on new laws without even considering 
removing or revising obsolete sections. All it's going to do is 
alienate any potential allies. The bad guys won't get caught because 
they hide, the good guys don't hide because they think they don't 
have a reason to. 
White hats are thrown in jail because they get bad attention and can 
cause a PR mess. Many times, the work of black hats can be 
covered up by the company or government. How many stories have 
we heard of hackers holding sensitive data ransom or extorting 
businesses in some way? You really don't think EVERY incident 
gets publicized, do you? These people want to make it look like 
they are tough on hackers, so they go after the easiest and most 
public targets. 
You will be giving a powerful message to upcoming generations of 
hackers. If the end result is the same, what the hell do I need this 
white hat for? 


Camenne entll cama lmanting of vaur dane ile ineuitahle What 
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color hat do you want him to be wearing? 
[ Reply to This | Parent ] 
= Re:Good intentions don't mean it is legal by putaro (Score:2) 


d intentions mean it is legal by Izago909 
(Score:2) Sunday September 07, @04:47AM 
= Lreply beneath your current threshold. 
= Re:Good intentions don't mean it is legal by arose (Score:2) Saturday 
September 06, @03:39PM 
= 2 replies beneath your current threshold. 


o Re:And good riddance. by Hiding MyName (Score:3) Saturday September 06, 
@02:59PM 


= Re:And good riddance, by HidingMyName (Score:2) Saturday September 
06, @07:45PM 
« Re:And good riddance. by HidingMyName (Score:2) Sunday 
September 07, @02:13PM 
= 1 reply beneath your current threshold. 
= 1 reply beneath your current threshold. 
Re:And good riddance. (Score:4, Insightful) 
by xplenumx (703804) on Saturday September 06, @05:27PM 
(#6889410) 
The University of Washington had a “student run” program where 
returning students could volunteer to help freshmen move into their dorm 
room. In return for their help, the UW would supply the volunteers with 
free food (Usually through SubWay, Dominos, etc, with a student leader 
ordering the food using UW budget codes). After everyone moved in, the 
group would disband and everyone would forget about it until the 
following fall. Approximately six years ago, the student leader who was in 
charge of ordering food decided in Winter quarter that he would use the 
budget codes and try to order up some food for him and his friends 
(http://tinyurl.com/mhck) . What was Eric's excuse when he was 
eventually caught? "I was just trying to show how insecure the system 
was" and "I was really doing Res. Life a favor". Sound familiar? Eric 
Feigenbaum then wrote a series of articles to the student newspaper, The 
Daily, regarding his experience and how the university didn't appreciate 
his 'generous act’. Personally I become extremely nervous when someone 
decides to conduct some unannounced public service, especially through 
illegal means. Usually the "I'm just misunderstood. I was really trying to 
help out” excuse comes out after the individual gets caught, but some 
individuals will come forward first, hoping that it'll cover their tracks. For 
example, I had one employee to came up to me and said that they learned 
how to use the copier without first putting in their copy code. Turns out 
the employee decided to “test” his method by making over 5000 copies 
over a period of three days (all after hours). Another employee within the 
firm reported that some equipment was missing (it would have been, 
discovered later that week). It was eventually discovered that the very 
same employee had stolen the equipment the night before. I don't know 
the first thing about Adrian Lamo besides what's written in the referenced 
article. He may be the most honest, altruistic, and generally nice guy in the 
warld Goad far him The nrohlem is that the next Adrian T.ama mav nat 
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be. 
[Reply to This | Parent ] 
= Re:And good riddance, by Planx_Constant (Score:1) Saturday September 
06, @07:49PM 
© Lreply beneath your current threshold. 
e Re:And good riddance. by arose (Score:2) Saturday September 06, @03:32PM 
o Re:And good riddance. by JeffTL (Score:1) Saturday September 06, @09:38PM 


« Great Excuse by Pave Low (Score:3) Saturday September 06, @10:48AM. 


e Re:Great Excuse by UWC (Score:1) Saturday September 06, @10:53AM 
o Re:Great Excuse by alienw (Score:2) Saturday September 06, @11:04AM 

Horrible analogy. (Score:5, Insightful) 
by pb (1020) on Saturday September 06, @11:08AM (#6887234) 
What if I just leave a signed note on the inside of your car that says 
“follow these three easy steps, and then no one else will be able to 
break into your car again"? Do you say "hey, thanks, buddy!", or 
“hey, someone broke into my car!”... 
[ Reply to This | Parent ] 


Response (Score:4, Insightful) 


by Overly Critical Guy (663429) on Saturday September 06, 
@12:08PM (#6887586) 


(Last Journal: Sunday August 10, @10:26PM) 


I say, “Why did you have to break into my car to write me a 
note?" 


{ Reply to This | Parent ] 


« How else... by idontneedanickname (Score:2) Saturday 
September 06, @01:05PM 


= Re:How else... by Nept (Score:2) Saturday September 
06, @04:29PM 


= Because... by idontneedanickname (Score:2) 
Saturday September 06, @06:42PM 


« Re:Because... by Nept (Score:2) Saturday September 
06, @08:07PM. 


= Sorry, I misunderstood by idontneedanickname 
(Score: 1) Saturday September 06, @10:49PM 
= 1 reply beneath your current threshold. 


= Re:Horrible analogy. by Sycraft-fu (Score:3) Saturday September 
06, @12:12PM 


Saturday September 06, @03:54PM. 
= And? by Sycraft-fu (Score:2) Sunday September 07, 
@05:17AM 
= 1 reply beneath your current threshold. 
« Re:Horrible analogy. by Art Tatum (Score:1) Saturday September 
06, @12:50PM. 


= Re:Horrible analogy, by Just Some Guy (Score:2) Saturday 
September 06, @02:02PM 


= Re:Horrible analogy. by WhaDaYaKnow (Score:2) Saturday 
Sentembher 1A A7-ARPM 
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= Lreply beneath your current threshold. 
Re:Great Excuse (Score:5, Insightful) 
by pantropilc (604178) on Saturday September 06, @11:21AM 
#6887307) 
That's a really awful analogy. 


If someone steals your car they are doing you a serious disservice 
and actively depriving you of something you cannot easily do 
without. 


To use your analogy in a way that actually makes sense: 


He isn't stealing your car. He is walking up and seeing if the door is 
unlocked and the keys are in the ignition. At the very MOST he is 
starting the car to prove he COULD steal it if he wanted to. But he 
never actually steals the car or harms you in any way (except maybe 
making you feel really stupid for having such an easily stolen car). 
He doesn't deprive you of it "for a month". 


Basically he's checking to see if he COULD steal your car, NOT 
stealing it. Then he tells you what to do to keep others from stealing 
it. 


Doesn't sound like evil incamate to me. If I was being a total idiot 
as regards security I think I'd appreciate it if someone pointed that 
out to me before someone else came along and took advantage of it 
and ended up doing real harm. 


The shame would be worth it in the end, I think. Unless you happen 
to be the NY Times, which is probably pretty sick of being shamed 
at this point. 
( Reply to This | Parent ] 
= Re:Great Excuse by Anonymous Coward (Score:1) Saturday 
September 06, @11:51AM 
« ireply beneath your current threshold. 


« Re:Great Excuse by rblancarte (Score:2) Saturday September 06, 
@11:58AM 


Re:Great Excuse (Score:5, Funny) 
by Shanep (68243) on Saturday September 06, 
@12:22PM (#6887653) 

hitp://slashdot.org/ 
YOU CANNOT BREAK THE LAW, EVEN FOR GOOD 
REASONS! IF YOU DO, EXPECT TO GO TO JAIL! 


I would bust his skull open with my tire iron, then call 
the cops. 


Okay, so busting this guys skull open is breaking the 
law for: 
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a) A good reason. 

b) A bad reason. 

c) No reason at all. 
d) None of the above. 


BTW, the thief will sue you from here to eternity. 
Maybe if you make it out of jail alive some day, you 
might be able to find a job to pay off that lifetime of 
debt to him. 


3) 


You can't just go around breaking open skulls because 
someone pisses you off. YOU CANNOT BREAK THE 
LAW, EVEN FOR GOOD REASONS! IF YOU DO, 
EXPECT TO GO TO JAIL! 


[Reply to This | Parent ] 
= Re:Great Excuse by Planx_Constant (Score:1) Saturday 
September 06, @07:58PM 


= Re:Great Excuse by Angram (Score:2) Saturday September 06, 
@12:14PM 


= Re:Great Excuse by shepd (Score:1) Saturday September 06, 
@12:40PM 
Re:Great Excuse (Score:5, Insightful) 
by arth1 (260657) on Saturday September 06, @01:07PM 
(#6887895) 
(htip://2130706433/ 
What companies do about those who warn them is what irks 
me. Not only do they press charges as if they had been 
maliciously broken into, but they tend to want to bill the 
white hat hacker for EVERYTHING telated to the incident, 
including but not limited to ignorant PHBs spending months 
in meetings about it, as well as the price for fixing the mess. 


t's like you getting to work one day and finding a note stating 
"the bathroom window opens from the outside, and the spare 
key for the filing cabinet where you keep customer data 
shouldn't be taped to the bottom of the counter." Then what 
do you do? Call in all the staff, and close up the store for a 
week while you hold meetings, followed by changing all the 
locks and buying a gun, and finally suing the person who left 
the note, charging him with the total costs of what you did? 


Or you tell a farmer that you were hiking in his woods when 
you discovered that his game warden was poaching. The 
‘armer's reaction is charging you with trespassing. While he 
may have a legal right to do so, he'd be a real jerk AND idiot 


to da sn 
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The above is, unforunately, the analog to what's happening in 
the electronic world. 


I'm not saying that Lamos and other self-appointed white hat 
hackers are RIGHT in what they do {I believe they aren't), but 
even if the messenger isn't welcome, you don't shoot him or 
blame hime for all the problems he reports. 

The main reason why you shouldn't do that isn't just because 
it’s a petty thing to do, but because you HURT yourself and 
others in the long run. 


See, if I were a hacker operating like Lamos, and saw 
companies doing that, instead of alerting the companies and 
risking facing their and the paranoid law makers full wrath, I 
would stop alerting the companies about their flaws -- 
instead, I would anonymously alert the PUBLIC. 


Seen from the viewpoint of a company, what's better about 
that? Yet, that's what they're pushing hackers into. 

The companies might argue that they would want people to 
stop rattling doors in the first place, and that’s a valid 
argument. However, it's not going to happen until you have 
exterminated every potential criminal and curious kid on the 
planet. 

In a Utopia, you don't even need a door lock, because no-one 
would ever walk through the door without a right to do so. 
However, companies can't argue that as a defense -- not 
installing a lock would be seen as gross negligence, because 
it's expected that criminals and curious people will trespass 
unless minimal safety measures are taken. That's how our 
society is. 


Charging Lamos is a signal, all right. Unfortunately the signal 
isn’t "don't test our security uninvited", but “once you've 
tested our security uninvited, don't tell us -- stay anonymous 
and tell it to everyone else". 


Regards, 


*Art 


« Re:Great Excuse by Penguin's Advocate (Score:2) Saturday 
September 06, @04:30PM. 
» Re:Great Excuse by Shdwdrgn (Score:1) Sunday September 
07, @01:50PM 
«= Re:Great Excuse by iserlohn (Score:1) Saturday September 06, 
@01:172M 
= Re: the car analogy by King_TJ (Score:2) Saturday September 06, 
@01:38PM 
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= Re: the car analogy by Mordanthanus (Score:1) Saturday 
September 06, @07:48PM 


07, @12:48PM 
= reply beneath your current threshold. 
= Re:Great Excuse by Just Some Guy (Score:2) Saturday September 
06, @02:07PM 


September 06, @03:52PM 
= Re:Great Excuse by Just Some Guy (Score:2) 
Saturday September 06, @04:01PM 
= Re:Great Excuse by arose (Score:2) 
Saturday September 06, @04:09PM. 
« Re:Great Excuse by Just Some 
Guy (Score:2) Saturday September 
06, @04:15PM. 
« Re:Great Excuse by 
arose (Score:2) Saturday 
September 06, @04:22PM 
™ 2 replies beneath your current threshold, 


= Re:Great Excuse by WhaDaYaKnow (Score:2) Saturday September 
06, @02:31PM 


« I yepty beneath your current threshold. 

= reply beneath your current threshold. 
Re:Great Excuse (Score:4, Insightful) 
by xenoandroid (696729) on Saturday September 06, @11:21AM 
(#6887310) 
(http://Awww.xenouniverse.com/) 
The difference is that he didn't hijack the servers and use them for 
his own deeds for a month and returned them. He got in, observed 
how severe the exploit was, got out, and told the admins that they 
need to fix it. If someone broke into my car without doing any 
damage to it and then left a note giving me suggestions I'd welcome 
it, it's not like they drove off with the car and they might have saved. 
my car from future theft. 
Reply to This | Parent } 


= Re:Great Excuse by sms (Score:1) Saturday September 06, @11:52AM 

ry laing (Score:1) Saturday September 06, @11:52AM 

= Re:Great Excuse by alienw (Score:2) Saturday September 06, 
@03:33PM 


= Lreply beneath your current threshold. 
= Re:Great Excuse by rikkards (Score:3) Saturday September 06, @01:29PM 
= Re:Great Excuse by Anonymous Coward (Score:1) Saturday September 
06, @01:47PM 
= Re: Your fly is open by Ignis Flatus (Score:1) Saturday September 06, 
@01:56PM 
= 2 replies beneath your current threshold. 
o Get permission, get paid. by FreeLinux (Score:2) Saturday September 06, 
@11:12AM 
= 1 renlv heneath vour enrrent threshold. 
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Re:Great Excuse (Score:5, Interesting) 

by hattig (47930) on Saturday September 06, @10:53AM (#6887147) 

(Last Joumal: Tuesday August 26, @08:53AM) 

Agreed. If he wanted to perform white hat hacking, he should have approached. 
the companies involved and asked for a job to test their security. Hell, he'd have 
earned money that way as well. 


But he did commit a crime - he broke into and entered their systems without 
permission. Sure, he did it for a good reason in his own head, and wasn't going 
to be malicious ... but it isn't as if he was doing the internet equivalent of 
rescuing the baby in a house fire. 

[ Reply to This | Pavent ] 


Re:Great Excuse (Score:5, Insightful) 


(#6887191) 
How different is this from the investigative reporters on your local news 
broadcast. In many cases a white hat my find that customer's CC numbers 
or SS numbers are accessable via an exploit or weak security. In a way, 
he/she would be helping the public by giving the company and 
opportunity to correct the situation or at least take it public. An 
investigating reporter may find that a company or governemnt office is 
throwing out sensitive info without shredding it or taking the proper 
preventative measures. If] am giving a company like Amazon my CC#, I 
want to oknow that they are going to protect that info. Who is going to 
watch/audit the company if they get lazy? 
{ Reply to This | Pazent ] 
Re:Great Excuse by jjhlk (Score:1) Samrday September 06, @02:39PM 
Re:Great Excuse by mindstrm (Score:1) Saturday September 06, @02:42PM 
Re:Great Excuse by mindstrm (Score: 1) Saturday September 06, @02:44PM 
Re:Great Excuse by bitflip (Score:1) Saturday September 06, @03:00PM 
Re:Great Excuse by mariox19 (Score:1) Saturday September 06, @04:23PM 
© Lreply beneath your current threshold. 
Re:Great Excuse by themassiah (Score:1) Saturday September 06, @10:56AM 
o Re:Great Excuse by moonbender (Score:3) Saturday September 06, @11:32AM 
© 2replies beneath your current threshold. 
« Re:Gre: cuse by LostCluster (Score:2) Saturday September 06, @10:57AM 


o Re:Great Excuse by SSI Vegeto2001 (Score:1) Saturday September 06, 
@11:18AM 


= Re:Great Excuse by Shanep (Score:2) Saturday September 06, @12:34PM 
© lL reply beneath your current threshold. 
Re:Great Excnse by Spicerun (Score:1} Saturday September 06, @10:58AM 
e Re:Gre: cuse by AArmadillo (Score:1) Saturday September 06, @11:01AM 
© J reply beneath your current threshold. 
Re:Great Excuse (Score:5, Interesting) 
by moonbender (547943) <moonbender AT t-online DOT de> on Saturday 
September 06, @11:02AM (#6887197 
(http://moonbender.host.sk/) 


So if someone had broken into my house without permission, then 
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told me about it afterwards, am I supposed to feel better about it? 


That analogy doesn't have a lot of merit. You're a private person, he didn't break 
into private computers. If a bank has a door to their vault which they don't know 
of and which is never locked, then yeah, they should be grateful for being told 
about it. Obviously, there's no bank so stupid, but that just goes to show that 
banks have a lot more experience dealing with real-world break-ins - another 
reason why this guy should be acknowledged for his deeds, he's making people 
aware of problems which they are xot experienced in dealing with. 
[ Reply to This | Parent ] 

o Re:Great Excuse by Sycraft-fu (Score:2) Saturday September 06, @12:07PM. 

@12:282M 

o Re:Great Excuse by Asmodean (Score:1) Saturday September 06, @12:36PM. 

o Re:Great Excuse by Nept (Score:2) Saturday September 06, @04:26PM 

© Lreply beneath your current threshold. 

« Can't ask or tell .... Jis just not the same thing by SerpentDrago (Score:1) Saturday 

September 06, @11:03AM 
Re:Great Excuse (Score:5, Insightful) 
by gtp (461286) on Saturday September 06, @11:07AM (#6887230) 


So if someone had broken into my house without permission, then told me about 
it afterwards, am I supposed to feel better about it? 


But if someone noticed that you can see into your bathroom and bedroom from 
the street, do you get them busted for being a peeping tom? 


The guy's not threatening anyone, nor is he stealing or endangering anyone's life. 
The "Housebreaking" metaphor doesn't realy apply. 


OTOH, your mention of the deadbolt and alarm does apply, but only in the sense 
that if I did buy/install a deadbolt and alarm, I'd be royally pissed if they didn't 
work. 
[ Reply to This | Parent ] 
Re:Great Excuse (Score:4, Insightful) 
by maggard (5579) <maggard@mac.com> on Saturday September 06, 
@11:17AM (#6887280) 
But if someone noticed that you can see into your bathroom 
and bedroom from the street, do you get them busted for 
being a peeping tom? 


But he didn't just "look in", he went and altered files. And the curtians 
were down, the door closed, he didn't just happen to glance in but broke 
in. 


The guy's not threatening anyone, nor is he stealing or 
endangering anyone's life. The "Housebreaking" metaphor 
doesn't realy apply. 


Rreakineg & Entering dnesn't merm anvone has tn he hame nv their life i 
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directly threatened. 
[ Reply to This | Parent ] 
= Re:Great Excuse by qtp (Score:2) Saturday September 06, @11:31AM 
= Re:Great Excuse by Shanep (Score:2) Saturday September 06, 
@12:49PM 
= altered files? by asv108 (Score:2) Saturday September 06, @12:37PM 
« Revaltered files? by maggard (Score:1) Saturday September 06, 
@01:55PM 
= Rezaltered files? by arose (Score:2) Saturday September 06, 
@04:05PM 


x» Re:altered files? by catenos (Score:2) Saturday September 06, 
@08:54PM 
= Re:altered files? by maggard (Score:2) Sunday 
September 07, @01:11AM 
= Re:altered files? by catenos (Score:2) Sunday 
September 07, @07:35AM 
= Lyreply beneath your current threshold. 
o Re:Great Excuse by Agent Deepshit (Score:1) Saturday September 06, @11:17AM 
» Re:Great Excuse by qtp (Score:3) Saturday September 06, @11:34AM 


n» Re:Great Excuse by Agent Deepshit (Score:1) Saturday September 
06, @12:20PM 


= Re:Great Excuse by ionpro (Score:2) Saturday September 06, 
@12:59PM 


= 2 replies beneath your current threshold. 
Re:Great Excuse (Score:4, Insightful) 
by dirk (87083) <dirk@one.net> on Saturday September 06, @11:19AM 
(#6887294) 


ip.com) 
Except we was in the systems and could have done anything while in 
there. Maybe he is a true “white hat" and didn't do anything bad and told 
them everything. But it is just as likely that he left a trojan or backdoor in 
the system. They can't tell what he did or didn't do, so they now have to 
not only secure their systems against whatever hacks he used to get in, but 
they have to scour everything on the system to make sure he didn’t change 
any data or leave anything behind (and there is no way to tell whether he 
copied anything from the system). 
{ Reply to This | Parent } 
= Re:Great Excuse by Piquan (Score:2) Saturday September 06, @07:23PM 
« Re:Great Excuse by dirk (Score:2) Saturday September 06, 
@10:18PM 
Re:Great Excuse (Score:5, Funny} 
by Have Blue (616) on Saturday September 06, @11:19AM (#6887296) 
(http://slashdot.org/ 
But if someone noticed that you can see into your bathroom 
and bedroom from the street, do you get them busted for 
being a peeping tom? 


No, but ifhe calls me up and says "I was watching you through your 
bedroom window last night" I would. 
T Renly ta Thic i Parent 7 
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= Mod parent up. by qtp (Score:2) Saturday September 06, @11:554M 
« Re:Great Excuse by Snowspinner (Score:1) Saturday September 06, 
@01:59PM 


= reply beneath your current threshold. 

o Break in by AtariAmarok (Score:2) Saturday September 06, @11:26AM. 
« Re:Break in by urmensch (Score: 1} Saturday September 06, @11:40AM 
« Re:Break in by efflux (Score:2) Saturday September 06, @01:49PM 


= Desevres Repeating by qtp (Score:2) Saturday September 06, 
@04:59PM 


o Re:Great Excuse by frankjr (Score:1) Saturday September 06, @11:32AM 
ply beneath your current threshold. 


o Your counter-analogy sucks too - try mine. by GreenEggsAndHam (Score:1) 
Saturday September 06, @12:37PM 


= 1Lreply beneath your current threshold. 
o Re:Great Excuse by jjhlk (Score:1) Saturday September 06, @02:43PM 
Re:Great Excuse by practicalista (Score:2) Saturday September 06, @11:25AM 
e Re:Great Excuse by lactose99 (Score:1) Saturday September 06, @11:44AM 
o Re:Great Excuse by lactose99 (Score:2) Saturday September 06, @12:32PM 
© Lyeply beneath your current threshold. 


« You're a goddamn moron. by Anonymous Coward (Score:1) Saturday September 06, 
@11:48AM 


o Re:You're a goddamn moron. by LearnToSpell (Score:1) Saturday September 
06, @12:50PM. 


o Re:You're a goddamn moron. by Acts of Attrition (Score:1) Saturday September 
06, @03:57PM. 


mu Lreply beneath your current threshold. 
© Lreply beneath your current threshold. 
Re:Greai Excuse by mod_parent_down (Score:1) Saturday September 06, @11:50AM 
Re:Great Excuse (Score:5, Interesting) 
by MrHanky (141717) on Saturday September 06, @12:01PM (#6887533) 
(bttp://www.google.comy/ 
An interesting analogy. 


aed 


. 


After drinking heavily in a bar, a friend of mine and I bought some slices of 
pizza at a shop, and went outside to eat. Since we were too drunk to stand up, we 
sat down on the steps outside another shop, which was closed for the night. That 
is, it should have been. My friend was leaning his back on the door, which was 
open. He fell right in. 


Now, the right thing to do, according to you, would be to go away, minding his 
own business. And what the hell was he doing, trespassing on the steps outside 
the shop and all. If this was in Texas, he would be rightfully shot. However, my 
friend, being both an imbecile and a crook with neither morals, nor respect for 
private property, went inside to look for a telephone and hopefully the phone 
number to the owner (we were both too tired to do any serious looting). And so 
the owner was noticed and the door was closed, and my friend got a serious 
hangover. 


The moral of this story is: if you drink, you get a hangover, so alchohol is bad, 
‘mkay? 
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[ Reply to This | Parent ] « f 
© Re:Great Excuse by Anonymous Coward (Score:1) Saturday September 06, 
@01:03PM 


= Re:Great Excuse by MrHanky (Score:2) Saturday September 06, @01:35PM 
= Re:Great Excuse by jjhlk (Score:1) Saturday September 06, 
@02:46PM 
« Also by mindstrm (Score: 1) Saturday September 06, @02:47PM 
e Hey, you left your keys in the door by cpopin (Score:1) Saturday September 06, 


@12:062M 
« Re:Great Excuse by jeffasselin (Score:1) Saturday September 06, @12:25PM. 
« Re:Gr by ScooterBill (Score:1) Saturday September 06, @12:41PM 


September 06, @12:48PM (#6887775 
(hitp://ww.lexnm.umontreal.ca/} 


The home invasion analogy is a very bad one. A home is by its very nature badly 
protected (you don't spend millions securing it, do you?) but it is also a 
sanctuary, a place where a break-in results in a certain emotional stigma. 


A better analogy would be this one: Suppose that somebody is waiting in an 
airport's lobby. He has not gone through the security checks yet. While waiting, 
he notices airport personnel going through what seems to be an unlocked 
employee-only door. A thought flashes in his mind: "This doesn't seem very 
secure. J thought airports were supposed to be secure.” So he goes to the door 
and lo and behold, it is unlocked! He goes through it and find a bunch or 
corridors and doors. 


Naturally curious and a little adventurous, our guy wonders how far he can go. 
He goes forward and manages to get to the departure area WITHOUT going 
through security, He feels a little proud of having easily broken a system on 
which governements and airlines has spent millions. 


Being a good citizen, our guy then goes to the security counter and shows his 
finding to the cop. But suddenly, the cop puts cuffs on him and charges him with 
trespassing and attempting to bypass security in an airport. Of course, the proper 
action would have been for the guy to go to security as soon as the unlocked 
door was found. Adrian Lamo should have stopped his investigation at the 
misconfigured proxy. 


However, is it reasonable to charge somebody with a federal crime for having 
gone a little further in testing the security of a system? Whether is was an airport 
or NYT's intranet. 


I don't think so. The FBI can claim that they don't know whether the guy 
smuggled dope during his attempt and the NYT can claim that they'll have to 
check every system for backdoors but I believe it's mostly bad faith from people 
lashing out because they felt humiliated. Get a grip... fix your stuff and move on. 
Destroying the life of somebody who tried to help you is just stupid and cruel. 

I Renlv to This | Parent 1 
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User ne pace 
« oh. good by waspleg (Score:2) Saturday September 06, @01:31PM 

. Excuse by Qrlx (Score:1) Saturday September 06, @01:41PM 

. it Excuse by CaptainTux (Score:1) Saturday September 06, @01:56PM 
« Re:Great Excuse by linkjunkie (Score:1) Saturday September 06, @02:05PM 

« my struggle... by CLOH14N2 (Score:1) Saturday September 06, @04:18PM 

* replies beneath your current threshold. 


« stupid lame 'grey hats’ by xtturbo (Score:1) Saturday September 06, @10:49AM 
« Re:stupid lame ‘grey hats' by krummis (Score:2) Saturday September 06, @12:22PM 


« Damn straight he should be arrested by Servo (Score:3) Saturday September 06, @10:50AM 


« He got what he deserved by nuggz (Score:2) Saturday September 06, @10:56AM 
o Mens zea by yerricde (Score:1) Saturday September 06, @11:34AM 
« Re:Damn straight he should be arrested by FunkyELF (Score:1) Saturday September 
06, @11:03AM 
o Re:Damn straight he should be arrested by The_Unforgiven (Score:1) 
Saturday September 06, @11:08AM 
e Re:Damn straight he should be arrested by Anonymous Coward (Score:1) Saturday 
September 06, @11:15AM 
o Re:Damn straight he should be arrested by the_2nd_coming (Score:1) 
Saturday September 06, @11:56AM 
o Re:Damn straight he should be arrested by the_greywolf (Score:1) Saturday 
September 06, @02:35PM 
© Lreply beneath your current threshold. 
« Re:Damn straight he should be arrested by Epistax (Score:2) Saturday September 06, 
@11:46AM 
« Re:Damn straight he should be arrested by Idou (Score:2) Saturday September 06, 
@11:52AM 
o Day of the dumbass by Servo (Score:2) Saturday September 06, @12:27PM 
= Re:Day of the dumbass by Idou (Score:2) Saturday September 06, 
@03:14PM 
« Re:Day of the dumbass by Servo (Score:2) Saturday September 06, 
@04:42PM 
« Re:Day of the dumbass by Idou (Score:2) Saturday 
September 06, @06:33PM 
= Re:Day of the dumbass by Servo (Score:2) Saturday 
September 06, @07:22PM 
= Re:Day of the dumbass by Idou (Score:2) Saturday 
September 06, @07:57PM. 
= Re:Day of the dumbass by Servo (Score:2) Saturday 
September 06, @10:172M 
¢ Re:Damn straight he shouid be arrested by Mt._Honkey (Score:2) Saturday September 
06, @11:54AM 
o Re:Damn straight he should be arrested by Servo (Score:2) Saturday September 
06, @12:20PM 
« Re:Damn straight he should be arrested by Mt._Honkey (Score:1) 
Monday September 08, @12:40AM. 
o Re:Damn straight he should be arrested by dtrent (Score:1) Saturday September 
06, @12:52PM 
e Re:Damn straight he should be arrested by Laughable (Score:1) Saturday September 
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« Damm the Jaw by bshroyer (Score:2) Saturday September 06, @02:25PM 


Call to *The Screen Sayers" (Score:5, Informative) 

by Larkfellow (265776) on Saturday September 06, @10:51AM (#6887134 
(http://comic.skilledinsanity.com/ 

Here's a link to The Screen Savers (on Tech TV) that has some information about what 
Adri: to say [techtv.com] when he called in live to speak with Leo. 

[ Reply to This ] . 


« Re:Calj to "The Screen Savers" by FearedThought (Score:1) Saturday September 06, 
@04:40PM 


e i reply beneath your current thresheld. 


hacking... (Score:5, Insightful) 

by softspokenrevolution (644206) on Saturday September 06, @10:52AM (#6887135) 
Well, zero tolerance. The thing here is that to an awful lot of people, and especially 
those who make the laws, hacking is hacking is hacking, who cares what someone says 
they were doing it for. 


Jcan realy understand how someone could consider that they're doing a service for 
admins and all of that, but the point is that you are still breaking into a system and then 
turning around and saying, "hey, this is a security hole, you should fix it" is kind of 
like G. Guido coming down to your house, breaking in through a window with a golf- 
club and then saying, "Hey, I can break into your house, better listen to me or I'll do it 
again." 


I'm sure that Adrian has some noble goals, but fundamentally when a company decides 
that they don't like people creeping into their system and then presses charages against 
those who do, it's their right to feel that their security was violated. Good luck to him 
really, but there are other ways you can help people protect their network security than 
by breaking into them. 

[ Reply to This ] 


e Rezhacking... by Felinoid (Score:1) Saturday September 06, @11:03AM 
Re:hacking...a service (Score:4, Interesting) 
by globalar (669767) on Saturday September 06, @11:08AM (#6887233) 
http://slashdot.con/ 
From the article: 
"'T hope there will be a time when Adrian can do positive things that everyone 
agrees are positive," 


This service analogy, or the positive light of the grey hacker's actions, does have 
some weight, as the hacker can inform the admins about the specific flaws of 
their system security. 


But then again, any service should be prompted or invited. And a larger problem 
is this isn't just washing windows, these are problem areas, flaws, and security 


flawre at that Thace micht aven rive annace ta a camnanue dirty lawman Ga nat 
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only is this service uninvited and not approved, it gives access to private 
company resources and information, and uses the security holes to get in. 


Yes, I assume if security is the only dimension that your job entails, then this is 
all worth it. But to most people in charge, and arguably the general populace at 
large, this is an intrusion by illegal means. 


I personally value my private virtual space. If you get on my computer and get 
into my root account, it's an intrusion. Yeah, I will listen to how you did it, but 
for your troubles you'll never use my computer again. 

{ Reply to This | Parent] 


» Wish had mod points for once by jbarket (Score:2) Saturday September 06, @11:10AM 


o Re: Wish I had mod points for once by williewang (Score:1) Saturday September 
06, @11:33AM 


© Lreply beneath your current threshold. 
Re:hacking... (Score:5, Insightful) 
by El Cubano (631386) on Saturday September 06, @11:35AM (#6887387) 
ican realy understand how someone could consider that they're doing a service 
for admins and all of that, but the point is that you are still breaking into a 
system and then turning around and saying, "hey, this is a security hole, you 
should fix it" is kind of like G. Guido coming down to your house, breaking in 
through a window with a golf-club and then saying, "Hey, I can break into your 
house, better listen to me or I'll do it again." 


I'm sure that Adrian has some noble goals, but fundamentally when a company 
decides that they don't like people creeping into their system and then presses 
charages against those who do, it's their right to feel that their security was 
violated. Good luck to him really, but there are other ways you can heip people 
protect their network security than by breaking into them. 


I can see your point, but what he was doing was exposing flaws in the security of 
“public places on the net. How is this any different than when the local news 
where I live broke into the nearby international airport's restricted area and did a 
report from there (this was about a year after 9/11) to show how lax security had 
become again. 


When the journalists do it, it is a public service. When a private citizen does it, it 
is a crime. WTF? Personally, if 1 am going to be utilizing the services of these 
sites, I want to know that they have good security (and not just because they say 
so). 


There is no way anyone can convince me that what he was doing was wrong. He 
was providing a public service, and if the public is too ungrateful to realize that, 
then it is really sad. 


It's not like he extorted money from the comapnies, or demanded some 
compensation, heck he even helped them fix the holes. It is just sickening that 
you can't even be a good Samaritan without someone wanting to take your head 
off. 
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[ Reply to This | Parent } 


© 2 replies beneath your current threshold. 
« Sreplies beneath your current threshold. 


Go Mom! (Score:5, Insightful) 
by The Tyro (247333) on Saturday September 06, @10:53AM (#6887140) 


Heheh... when the agents wanted to come into her home, she told them to get stuffed 
and come back with a warrant... 


That's love, folks. 


Jt would be ironic if this was set up by the NY times. I thought investigative/secret 
camera/sting operation reporting was supposed to be agressive journalism... couldn't 
his “hack” be considered the same sort of thing? "Unsporting" doesn't begin to describe 
it, particularly if he was up-front and honest about helping them out. If the NYtimes 
can investigate, blow the whistle on others, and embarass them into action, I'd say the 
same card can be played against the Times. "Sour Grapes" anyone? 


Yes, he was likely technically in the wrong, no doubt about it, particularly if you 
adhere to the letter of the rule, rather than the spirit of the rule... even so, this seems a 
bit heavy-handed. 


(Reply to This ] 


« Re:Go Mom! by LostCluster (Score:3) Saturday September 06, @11:01AM 


o It brings up another issue by The Tyro (Score:3) Saturday September 06, 
@11:54AM 


« Re:It brings up another issue by cthugha (Score:2) Saturday September 06, 
@10:36PM 


= My understanding by The Tyro (Score:2) Sunday September 07, 
@01:25AM 


« Re:My understanding by cthugha (Score:2) Sunday 
September 07, @03:59AM 
© reply beneath your current threshold. 
e Re:Go Mom! by SunPin (Score:3) Saturday September 06, @11:194M 
« Re:Go Mom! by Drogo Knotwise (Score:1) Saturday September 06, @01:11PM 
2 replies beneath your current threshold. 


« Seems fair by TheFairElf (Score:3) Saturday September 06, @10:55AM 
e Re:Seems fair by practicalista (Score:1) Saturday September 06, @11:05AM 


« Damn by Timesprout (Score:1) Saturday September 06, @10:56AM 


This seems unfair (Score:5, Insightful) 
by practicalista (686436) on Saturday September 06, @10:57AM (#6887166) 
Tam not sure what he did at the New York Times can even be considered hacking. 


So far as I can tell he set his web proxy to the address of the company infranet, surfed 
aronnd that dawnloaded same dacmments and used the information contained in these 
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to get some more. * 
Whilst I don't approve of hacking per-se, I'd have to say that here, this is very little 
more than exposing a badly designed web site. 


Imagine that you go to you Gas company's online web site, look at the URL and see 
your account number in it. You think to yourself, I wonder what would happen if I 
changed one of the digits. You do and fo and behold up pops all the information to 
another customer. 


Now you can go for your 15 minutes of fame and ring up SecurityFocus or you can 
have a quiet word with the Webmaster of the Gas company - either way, you are not a 
hacker. 


[ Reply.to This ] 


« He accessed an internal network by mindstrm (Score:1) Saturday September 06, 
@11:04AM 


Re:He accessed an internal network (Score:5, Insightful) 

by practicalista (686436) on Saturday September 06, @11:16AM 
#6887277) 

The law make distinctions between trespass, breaking and entry, armed 

robbery and so on. . 


The guy who wanders around your house is a trespasser not an armed 
robber. It seems here that a better analogy would be : 


A guy walks in to your unlocked house, boasts about it and you insist that 
he prosecuted for the worst possible crime he *may* have committed, not 
the crime he did commit (to walk through an unlocked door). 
[ Reply to This | Parent ] 
= Re:He accessed an intemal network by catenos (Score:3) Saturday 
September 06, @08:37PM 
= Re:He accessed_an internal network by MegaFur (Score:1) 
Saturday September 06, @11:28PM 
= 1 reply beneath your current threshold. 
o Re:He accessed an internal network by Uerige (Score:1) Saturday September 06, 
@02:48PM 
= lyeply beneath your current threshold. 
© 2 replies beneath your current threshold. 
e Re:This seems unfair by Anonymous Coward (Score:1) Saturday September 06, 
@1i:12AM 
¢ Re:This seems unfair by davesag (Score:2) Saturday September 06, @07:29PM 
© 2 replies beneath your current threshold, 


« It's about time. by FreeLinux (Score:2) Saturday September 06, @10:58AM 


¢ Sheesh! by joto (Score:3) Saturday September 06, @10:58AM 
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« Re:Sheesh! by WindowLicker916 (Score:1) Saturday September 06, @11:51AM. 
o Re:Sheesh! by joto (Score:2) Saturday September 06, @12:14PM. 
« Re:Sheesh! by serviscope_minor (Score:1) Saturday September 06, @12:01PM 


How lame... (Score:4, Funny) 


(hitp://www.eng. fsu.edu/~jabbott) 
..the FBI has filed charges against [Lamo], and currently has his parents’ 
house staked out. 


Well that's just... lame-o! [ducks for cover} 
[ Reply to This ] 


« another scapegoat by segment (Score:2) Saturday September 06, @10:59AM 
e 1 reply beneath your current threshold. 


« He did nothing wront, because... by Jacer (Score:2) Saturday September 06, @11:00AM 


« Common Sensel!! by drakman (Score:1) Saturday September 06, @11:02AM 


« Re:Common Sense!! by serviscope_minor (Score:1) Saturday September 06, @12:06PM 
ly beneath your current threshold. 


What was he thinking? (Score:5, Insightful) 

by tarranp (676762) on Saturday September 06, @11:04AM (#6887208) 

If you break into someone's house, telling him after the fact how yo got in does not 
automatically pardon you from the crime... 


Had Adrian simply notified the New York Times in a timely manner about the open 
proxy servers, he would have been fine and probably accomplished his mission. 


Instead, he took his time cracking the system, widening the holes so to speak, and then 
went to a reporter(!), of all people. 


There is nothing inherently wrong with his desire to improve security. There is nothing 
wrong with him looking around the public spaces on the internet for chinks. What was 
wrong was that he failed to tell the people maintaining the chinks directly about them, 
widened them until he got at valuable data, didn't tell the affected people about the 
data he had received, but then went to a third party and told them about the wanging 
big hole he had made. I'm sure he views himself as a knight in shining armor, but in 
this matter he behaved like a publicity-seeking selfpromoter. 


Yes, shame on the NYT for misconfiguring their systems, but even more shame on 
Adrian for doing something so illegal and counterproductive. 


It does not matter if a person thinks he's a good guy, he still does not have carte 


hlanche ta da uthatevar he wichas 
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[ Reply to This ] 


» Re:What was he thinking? by FussionMan (Score:1) Saturday September 06, @01:43PM 

« Re:What was he thinking? by ChannelX (Score:2) Saturday September 06, @11:26AM 
o i reply beneath your current threshold. 

« 4 replies beneath your current threshold. 


e Enter the Matrix by GillBatesO (Score:1) Saturday September 06, @11:04AM 
e Code of Ethics by Maradine (Score:1) Saturday September 06, @11:06AM. 


« finaly a good analogy by claude_juan (Score:2) Saturday September 06, @11:07AM 


» Re:finaly a good analogy by LostCluster (Score:2) Saturday September 06, @12:19PM 


e You're right by KalvinB (Score:2) Saturday September 06, @11:59SM 
© lreply beneath your current threshold. 


e ADRIAN DON'T COME HOME! by Anonymous Coward (Score:1) Saturday September 
06, @11:09AM 


Um, what?? (Score:5, Interesting) 

by GrouchoMarx (153170) on Saturday September 06, @11:12AM (#6887257) 
http://slashdot.org/ 

OK, white hat cracking someone is still cracking their system, no matter how 

benevolent the intent. But this part just makes my blood boil: 


French did not know what the specific allegations were, because the charging 
document is sealed. 


Especially in light of this part of another article that people need to spend more time 
reading: 


in all criminal prosecutions, the accused shail enjoy the right to a speedy and public 
trial, by an impartial jury of the State and district wherein the crime shall have been 
committed, which district shall have been previously ascertained by law, and to be 
informed of the nature and cause of the accusation; to be confronted with the 
witnesses against him; to have compulsory process for obtaining witnesses in his 
favor, and to have the assistance of counsel for his defense. 


Excuse me, what part of cracking the NY Times is a threat to national security? Why 
are so many court documents sealed these days? There is NO legitimate reason for 
securing this sort of charge. Even if the prosecutors were to go as far as claiming he 
were a terrorist, there's still no nuclear weapons secrets (which we all know by now 
anyway, despite being classified) in the NY Times payroll database. 
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therefore he can't be found guilty. 


1 don't support this sort of vigilante white hat hacking, but I oppose ignoring the 
constitution even more. 


{ Reply to This J 


e Re:Um, what?? by mellonhead (Score:1} Saturday September 06, @12:06PM 

© 1 reply beneath your current threshold. 
« Re:Um, what?? by One Louder (Score:3) Saturday September 06, @12:39PM 

o Re:Um, what?? by aminorex (Score:2) Sunday September 07, @09:56PM 
« Lreply beneath your current threshold. 


Mixed feelings on this issue (Score:5, Insightful) 

by Orion Blastar (457579) on Saturday September 06, @11:12AM (#6887262) 

Ifhe was hired to test security it would be a different matter. But he allegedly broke 
into those systems without permission. That puts him in violation of Cybercrime laws. 


I feel sorry for him, because he did allegedly report the weaknesses to the admins and 
he could have just read the data and not told anyone and used the information for his 
on purposes. So his intentions were good, to plug security holes by finding them and 
telling the admins about it. But he is doing it the wrong way, without permission. 


He may want to think about pleading guilty and making a deal to get reduced charges. 
This will make him famous and when he gets out of jail and ends probation, he can 
become a security consultant. Otherwise they may try to make an example out of him 
and charge him with a full pentalty and any other charges they can think of. 


But then the places he broke into didn't use good security practices and didn't apply the 
latest updates. Personally, I wouldn't put a machine on the Internet that contains 
sensitive data on it that only my company should have access to like contact 
information, credit card numbers, etc. 


[ Reply to This ] 


« Re:Mixed feelings on this issue by Daedalus-Ubergeek (Score:1) Saturday September 


06, @11:30AM 
o Re:Mixed feelings on this issue by Orion Blastar (Score:1) Saturday September 
06, @05:11PM. 


© LI reply beneath your current threshold. 
« Re:Mixed feelings on this issue by ratboy666 (Score:2) Saturday September 06, 
@01:00PM 
o Cybercrime by Orion Blastar (Score:1) Saturday September 06, @05:15PM 
o 1 reply beneath your current threshold. 


« Jayson Blair? Ah. by AtariAmarok (Score:3) Saturday September 06, @11:12AM 


« Now HERE is some honesty! by AtariAmarok (Score:2) Saturday September 06, 
@12:45PM 


« Why they're after him by mabu (Score:2) Saturday September 06, @11:13AM. 
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« More likely... by Brian Stretch (Score:2) Saturday September 06, @11:46AM 
« Re:Why they're after him by stevejsmith (Score:2) Saturday September 06, @11:514M 


Why do they do it? (Score:5, Insightful) 

by Knunov (158076) <eat@my.ass> on Saturday September 06, @11:14AM. 
(#6887271) 

(hitp://goatse.cx/) 

I know what many of you are thinking. Why not tell these companies BEFORE you 
break in? 


Because IT'S NOT FUN, that's why. Or perhaps more accurately, it's not stimulating. 


Hacking these sites takes time, and the payoff is getting inside and saying, "WOO- 
HOO! I DID IT!" The fact that he does nothing malicious afterwards and even calls 
and helps the sysadmins unfuck their systems is a testament to his character. 


For those who would compare his antics to breaking into your home, but not stealing 
anything, it's a poor analogy. Why? Because your house is your personal meatspace. 
And if he went inside, he would see many things personal to you, such as family 
pictures, your kid's toys, or ifhe was REALLY unlucky, your fat, naked ass sitting in a 
Lazy Boy with a bowl of chips balanced on your ponderous belly, flipping through the 
channels. 


“Uhhh... hey dude. Your lock is vulnerable." 
See? Just not the same. 


Getting past a computer's defenses is not the same as physically entering a home or 
bank vault, though I would find the latter far less intrusive than home invasion, 
especially ifhe never even touched the money. 


Now, if he LOOKED at personal/confidential files once inside, that is a different story. 
But beating a system's defenses, with the only ambition of proving you can do it, then 
calling the responsible party and helping them fix the security flaw SHOULD NOT be 
punished. 


Misdemeanor, at most. 


It doesn't matter what he could have done while inside, it matters what he did, or more 
specifically did not do while inside the system. 


“That bastard! He saw my FILE NAMING SCHEME!" 


Yeah, he should fry for that... 


Knunov 
[ Reply to This ] 


| 
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Re: Why do they do it? by Sycraft-fu (Score:2) Saturday September 06, @11:59AM 
Re: Why do they do it? by buttahead (Score:2) Saturday September 06, @12:59PM 
Re: Why do they do it? by Caeldan (Score:1) Saturday September 06, @01:28PM 
Re:Why do they do it? by RzUpAnmsCwrds (Score:2) Saturday September 06, 
@07:40PM. 

Re:Why do they do it? by eddie can read (Score:1) Sunday September 07, @04:09AM 
*® 3.replies beneath your current threshold. 


enee 


« No more bullshitting. by Henry Stern (Score:2) Saturday September 06, @11:16AM 


«@ Lreply beneath your current threshold. 


Hacker the Gray (Score:5, Funny) 

by AppHack (622902) on Saturday September 06, @11:18AM (#6887289) 

So he's a gray hat hacker who has fallen into shadow. Will he come back as a white hat 
hacker, more powerful than before? 


[ Reply to This ] 


* lotr jokes ... by krumms (Score:2) Saturday September 06, @12:32PM 
« MS upset at free choice?? by Martigan80 (Score:1) Saturday September 06, @11:194M. 


« Re:MS upset at free choice?? by Hatta (Score:2) Saturday September 06, @12:35PM 


+ Run. Just get out ofhere... by Jerk City Troll (Score:1) Saturday September 06, @11:20AM 


Dialectic (Score:5, Insightful) 

by Henry V_.009 (518000) <marstrail AT hotmail DOT com> on Saturday September 
06, @11:22AM (#6887313) 

(http://thrasymachus.typepad.com/thras/ | Last Journal: Monday August 11, @12:39PM. 

Everyone enjoys comparing hacking to breaking into someone's house or trespassing 
on private property. It is not. You cannot be ‘inside’ someone else's server. (It is doubly 
impossible given the girth of most hackers.) The physical definitions fall apart. And 
the metaphorical analogies do not mesh physical property and Turing machines so 
well. 


We can begin with what we do know for sure about hacking. A hacking incident is 
when someone sends packets of information (in some form and by some medium) 
from a computer or computers to someone else's computer or computers. Which 
packets are illegal and which are not? Any exact definition raises problems. You can 
say that any packets that change the functioning of the target system in an unintended 
way is hacking. So the ignorance of the owner becomes the limit of what is or is not 
hacking. Faking an email address on a badly designed sign up page (or using 
mailinator) might be hacking under that definition. Other definitions are similarly 
problematic. Currently our legal system tends to default (once it actually gets to jury 
trial) to the above definition, but (in effect) adds that the act must be highly technical 
and use specialized tools. (Other definitions exist, and J am of course willing to bust 
holes in any particular one you care to suggest--so go ahead and suggest them.) 
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But there is such a thing as computer hacking. Everyone knows that. Even if we cannot 
have an exact legal definition, we know that some things are clearly computer hacking. 
What is the best way of creating law (which is now inexact) to deal with this behavior? 
I would suggest making the motive of the hacker one of the main considerations of 
law. It is always hard to for legal systems to judge guilt based on motive--and they 
should not if they can avoid it--but in this case, they must either judge the motive of 
the victim or the perpetrator. If the motive is vandalism or theft, then the act should be 
punished. Adrian Lamo's motive appears to have been an act that should not have been 
punished--though it is highly important to state that we do not yet know the facts. 

[ Reply.to This ] 


« My house, my property by KalvinB (Score:2) Saturday September 06, @12:05PM 


o Re:My house, my property by Henry V .009 (Score:3) Saturday September 06, 
@12:18PM 


= Further evidence of our retarded society by KalvinB (Score:3) Saturday 
September 06, @04:17PM 
= Re:Further evidence of our retarded society by Henry V .009 
(Score:2) Saturday September 06, @04:31PM 
« Even more evidence of our retarded society by KalvinB 
{Score:2) Saturday September 06, @05:18PM 
« Re:Even more evidence of our retarded society by 


Henry V .009 (Score:2) Saturday September 06, 
@05:36PM 


u Re:Even more evidence of our retarded society by 
GoneGaryT (Score:1) Sunday September 07, @04:31PM 
« Re:Even more evidence of our retarded society by 
GoneGaryT (Score:1) Sunday September 07, @04:40PM. 
= 2 replies beneath your current threshold. 
= 1 reply beneath your current threshold, 
o Re:My house, my property by qeveren (Score:1) Saturday September 06, 


@01:19PM 
= Re:My house, my property by KalvinB (Score:2) Saturday September 06, 
@04:21PM 


= Re:My house, ny property by ege4ever (Score:1) Saturday 
September 06, @06:11PM 


m Lreply beneath your current threshold. 
« Re:Dialectic by Chester K (Score:2) Saturday September 06, @01:33PM 
o Re:Dialectic by Henry V .009 (Score:2) Saturday September 06, @01:57PM 
« Re:Dialectic by goldfndr (Score:2) Monday September 08, @12:59AM 
« Re:Dialectic by Henry V .009 (Score:2) Saturday September 06, @12:01PM 
o Re:Dialectic by Henry V .009 (Score:1} Saturday September 06, @12:33PM 
« Re:Dialectic by Henry V .009 (Score:1) Saturday September 06, @01:45PM 
= Re:Dialectic by Henry V .009 (Score:2) Saturday September 06, 
@02:05PM 
« Re:Dialectic by Henry V .009 (Score:2) Saturday September 
06, @02:34PM. 
= Lyeply beneath your current threshold. 
= ireply beneath your current threshold. 
w reply beneath your current threshold. 
oO Lreply beneath your current threshold. 
e 1 revly beneath vour current threshold. 


FBI(19-cv-1495)-1919 


http://slashdot.org/articles/03/09/06/1325221 shtml?tid=123 &tid=126&tid=172&tid=99 9/8/2003 


Slashdot | Adrian Lamo Charg; ith Hacking e@ Page 28 of 33 


‘ . 


« More alarming is ... by dominic. laporte (Score:1) Saturday September 06, @11:22AM 
¢ Lreply beneath your current threshold. 


« And after this is over...... by micaiah (Score:1) Saturday September 06, @11:30AM 


Adrian we're here to help (Score:4, Funny) 


(Last Jour: 


you [spr.org] 
[ Reply to This ] 


/ednesday May 28. @01:51AM) 


« Re:Adrian we're here to help by Theodore Logan (Score:2) Sunday September 07, 
@06:18AM 
e 1 reply beneath your current threshold. 
« Ethical but illegal by r6144 (Score:2) Saturday September 06, @11:31AM 


e Re:Ethical but illegal by Courageous (Score:1) Saturday September 06, @11:56AM 
© iyeply beneath your current threshold. 


«© Whe ke by Vellocet (Score:2) Saturday September 06, @11:32AM. 


o Re:What a joke by Vellocet (Score:1) Saturday September 06, @12:32PM 
«= Lyeply beneath your current threshold. 


« What country does he think he lives in? by Cyno (Score:3) Saturday September 06, 
@11:37AM 


« You're all just mad... by whoda (Score:2) Saturday September 06, @11:39AM 


» Am 


upposed to cry now? by davmoo (Score:2) Saturday September 06, @11:44AM 


« Re:Am I supposed to cry now? by LostCluster (Score:2) Saturday September 06, 
@12:27PM 


« Re:Am I supposed to cry now? by dtfinch (Score:2) Saturday September 06, @10:05PM 
« J reply beneath your current threshold. 


» What we need is an intermediary by capedgirardeau (Score:2) Saturday September 06, 
@11:48AM 


« Ihave another analogy.... by PalmAddict (Score:1) Saturday September 06, @12:03PM. 
© lyreply beneath your current threshold. 


e Wall Street Journal by srichman (Score:2) Saturday September 06, @12:06PM 
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Oh, because corporations are always trustworthy (Score:5, Insightful) 

by the-banker (169258) on Saturday September 06, @12:06PM (#6887571) 
Tunderstand most of the arguments against what Lamo did, but there are a few points I 
want to get off my chest: 


1. To all those saying, 'Its like he broke in your house’: No it isn't. The machines were 
connected to the internet, which is a public medium. A house is a physically closed 
space where courts have rules one can have an expectation of privacy. Nobody can 
claim that the internet should provide an expectation of privacy - by its very nature of 
using shared resources it flies in the face of such an argument. 


2. I don't know how it needs to be done, but truthfully do you (the collective Slashdot 
you) trust companies to secure their networks, perform audits and be upfront and 
honest about their failures? If I were a NYT partner I would be furious that my 
information may have been publicly accessible, yet I would never have known about 
its vulnerability without Lamo. How many companies have been hacked, had credit 
card or other info stolen, and just not said anything about it? When Acxiom was 
hacked, personal information on individuals was stolen over 8 months before they 
"discovered" the hack - and the hack was found by Hamilton County, Ohio 
Prosecutor's office when investigating another case that had come forward. What are 
the chances that Acxiom KNEW they had been hacked, compromised personal 
information, and said nothing? I am guessing with the current climate of corporate 
ethics, a preity high chance exists that a lot of information is being disseminated by 
people who stole it and consumers have no idea because the company in question is 
sweeping it under the rug. 


Hacking into someone else's system is bad. Nobody can disagree there, but the bottom 
ine is a tradeoff of negative impacts - for what Lamo did I see a lot fewer negative 
consequences than today's corporate ixresponsibility with personal information and 
computer security. 


¢ Re:Oh, because corporations are always trustworthy by juuri (Score:2) Saturday 
September 06, @04:09PM 

« Re:Oh, because corporations are always trustworthy by gothicpoet (Score:1) 
Saturday September 06, @07:50PM 

« 3 replies beneath your current threshold. 


« Breaking into House/Car Analogy by wiredbuddy (Score:1) Saturday September 06, 
@12:15PM 


« First false stories, then shoot the messenger by cpopin (Score:1) Saturday September 06, 
@12:18PM 


¢ J reply beneath your current threshold, 
« Ingrateful by Bruha (Score:2) Saturday September 06, @12:20PM 
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September 06, @12:28PM 

« why do / have to put a subject by BRUTICUS (Score:1) Saturday September 06, @12:37PM 
e Interview him by BortQ (Score:3) Saturday September 06, @12:46PM 

« Stupid NY-Times by caffeineHacker (Score:1) Saturday September 06, @12:51PM 


« is there such a thing as cracking... by lobsterGun (Score:2) Saturday September 06, 
@12:52PM 


« The Problem is how they're handling this by miraclemax (Score:2) Saturday September 06, 
@12:55PM 


« 1vreply beneath your current threshold, 
« Itsa sad world by madstork2000 (Score:3) Saturday September 06, @12:58PM 
« Re:lts a sad world by gvc (Score:2) Saturday September 06, @01:29PM 


« Isn't INTENT part of committing a crime? by Quizo69 (Score:2) Saturday September 06, 
@01:02PM 


e Re:Isn't INTENT part of committing a crime? by gvc (Score:1) Saturday September 06, 
@01:13PM 


e New York Times story by cpopin (Score:1) Saturday September 06, @01:10PM 


« Sol was walking downtown... by ZackSchil (Score:1) Saturday September 06, @01:20PM 


All the news thats is fitted to print (Score:5, Insightful) 
by cluge (114877) on Saturday September 06, @01:25PM (#6887988) 

http://www. italian-cars.com) 
The NYT is one of the most hypocritical organizations today. They sue to get 9/11 
tapes of people dieing - all in the name of "openess" and “public information”, yet they 
have a network connected to the public network - which is open and transparent 
through their own doing - and thats bad/iliegal? PLEASE ~ The NYT's proxy servers 
were so misconfigured that it was akin to them posting information in the window of 
the downtown offices and then getting pissed if people read what they posted. 


‘You can bet your rear quarters that if our hacker had been a reporter on a story for the 
NYT that they would be vigorously defending his actions. Like most large corporate 
entities the NYT has no moral basis for anything it does, in the end it’s about money, 
not honesty, truth or enlightenment. It sure as hell isn't about the times mission 
statement which is "The Company's core purpose is to enhance society by creating, 
collecting and distributing high-quality news, information and entertainment." 


RAMs ane in dlene, Aiaala havin fnchnanad aAntndl ts tintedttny in thoeneda a 
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found to the world. It would have been high quality news to see how one of the most 
influtential papers is really run. 

[ Reply to This ] 


« Re:Ail the news thats is fitted to print by bradleyjg (Score:1) Saturday September 06, 
@06:40PM 


« Non-Issue by Visceral Monkey (Score:1) Saturday September 06, @01:34PM 

NYT? (Score:4, Funny) 

by wolf- (54587) on Saturday September 06, @01:46PM (#6888105) 
‘http://www. lobosoft.com/) 

They were worried he knew just how much of their news was faked. 

{ Reply to This] 


e Lyeply beneath your current threshold. 
* Police vs. judiciary by gvc (Score:1) Saturday September 06, @01:50PM 


Entering via an open door... (Score:4, Insightful} 

by podperson (592944) on Saturday September 06, @01:54PM (#6888143) 

(http://www .zip.com.au/~tonio) 

If you leave your front door open and I take a look inside your house, what crime have 
Icommitted? At most, I am told, trespass. If you left the keys under the mat and I 
opened the door, it's breaking and entering. 


Similarly, if take your car with the clearly stated intention to return it when I am done 
(e.g. if I desperately needed to drive someone to the hospital), I haven't stolen it, I've 
borrowed it -- with or without your permission. 


Theft, burglary, etc. are crimes defined in part by the intention of the alleged 
perpetrator and the damages suffered by the alleged victim. 


OTOH we live in a world where one of the first "terrorist" groups targeted by the 
government after 9/11 were Environmental Activists who destroy machinery but have 
been careful never to hurt anyone. 


But I'm no lawyer. 
[ Reply to This ] 


« Re:Entering via an open door... by tiny69 (Score:2) Saturday September 06, @07:46PM. 
o Re:Entering via an open door... by podperson (Score:2) Saturday September 06, 
@10:18PM 
« Re:Entering via an open door... by tiny69 (Score:2) Saturday September 
06, @11:19PM 
* Lreply beneath your current threshold. 


« Consider The NY Time's Liability by nutznboltz (Score:2) Saturday September 06, 
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@Q2i3-M : < 
« Lknow Adrian, by musingmelpomene (Score:1) Saturday September 06, @02:17PM i 


« Government agecy for hacking by jjhlk (Score:1) Saturday September 06, @02:34PM 


¢ Legality. by mindstrm (Score:1) Saturday September 06, @02:39PM 


« Re:Legality. by x Golden Hawk x (Score:1) Saturday September 06, @03:29PM t 
o Re:Legality. by mindstrm (Score:1) Saturday September 06, @03:36PM | 
| 


« Re:Legality. by x Golden Hawk x (Score:1) Saturday September 06, 
@03:462M 


i 

i 
« Surprising lack of common sense by StormReaver (Scote:2) Saturday September 06, | 
@02:52PM 


* Lyeply beneath your current threshold, : 


« Apparently the NY Times heeded sec zealots by aricusmaximus (Score:1) Saturday 
September 06, @02:54PM 


« Give the NY Times a piece of your mind by aricusmaximus (Score:1) Saturday September 
06, @03:09PM 


« Legality? by Tellalian (Score:1) Saturday September 06, @03:17PM 


« Its ali proceeding according to plan. . . by Fantastic Lad (Score:2) Saturday September 06, 
@03:20PM 


« White hat? by Cyberllama (Score:2) Saturday September 06, @06:45PM. 
« first... by PhreakOfTime (Score:2) Saturday September 06, @07:03PM 
« see by ShadowRage (Score:1) Saturday September 06, @10:53PM 


« Adrian Lamo! by TheLoneWolf (Score:1) Monday September 08, @12:32PM 


« Re:you got beat by LostCluster (Score:2) Saturday September 06, @10:53AM 


* Re:better avoid mom and dads house by deglr6328 (Score:2) Saturday September 06, 
@01:30PM 


* GODDAMN I'M UGLY AND STUPID by pr0ntab (Score:2) Saturday September 06, 
@11:35PM 


« Re:bnagine two countries: by crucini (Score:2) Sunday September 07, @01:56AM 


« 29 replies beneath your current threshold. 


M12 
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Letter Of The Law 


WHO CAN FORGET THE SCENE IN “NETWoRK” where 
Howard Beale, the aging UBS news anchor, tells his 
viewers: “I want you to get up right now. Get up. Go 
to your windows, open your windows, and stick your 
head out, and yell, ‘I’m as mad as hell and F'm not 
going to take this anymore!” 

We need to follow Howard’s lead. We need to say 
that we are as mad as hell because one of our premier 
law enforcement agencies, the FBI, is mounting a 
direct assault on our First Amendment freedoms. 

This assault comes from FBI Special Agent 
Christine Howard. She recently sent letters to several 
news organizations demanding that journalists keep 
all information they have on Adrian Lamo, a com- 
puter hacker who said that he had gained access to 
The New York Times Intranet in 2002. Lamo,-a 22- 
year-old drifter who is also known as the “Homeless 
Hacker,” claims that he accessed a list of The New 
York Times Op-Ed contributors. The list included the 
social security numbers and home phone numbers of 
many prominent individuals, including former pres- 
ident Jimmy Carter, former secretary of state James 
Baker, Warren Beatty, Robert Redford, and James 
Carville. Lamo has been charged in federal court 
with computer fraud and unlawful access. 

The FB] letters sent to journalists covering Lamo’s 
story warn that all records regarding conversations 
with Lamo may soon be subpoenaed. The letters, 
according to The Reporters Committée 
of the Press, include the statement, “you Srgrequest~ 


ed nottto disclose this request, or its contents, to any- 
Da * @ bs 


x gent HoWard’s letters do not follow Justice 
“Departitent, guidelines on issuing subpoenas to jour- 
nalists. These guidelines include the requirement 
that federal prosecutors must pursue all other 
sources of information before issuing a subpoena to 
a reporter, In addition, federal prosecutors must also 
negotiate with a reporter before issuing a subpoena 
unless the negotiations would compromise an inves- 
tigation. We believe that the FBI has grossly over- 
reached its authority by threatening journalists with 
subpoenas while demanding their silence. 

‘The EBI’s actions strike at the heart of the First 
Amendment. Threats of subpoenas and demands for 
silence violate the traditions and protections afforded 
to the gathering and publishing of newsworthy infor- 
mation. The FBI must retract its subpoena threats 
and must withdraw the demands for silence. 
Anything less will keep Howard Beale at our win- 
dow, expressing our anger to all in our audience. 
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I do not fear computers I fear the lack of them - Isaac Asimov 


17:07:07 GMT 11/09/2003 


11/09/03 - In Depth: Adrian Lamo, the charges 


Accused New York Times hacker Adrian Lamo is charged with two title 18 violations 
of U.S.C (United States Code}. Specifically section 1030 (a) (5) (A) (ii) 
“intentionally accesses a protected computer without authorization, and as a result 
of such conduct, recklessly causes damage” and section 1029 (a) (2) “knowingly and 
with intent to defraud traffics in or uses one or more unauthorized access devices 
during any one-year period, and by such conduct obtains anything of value 
aggregating $1,000 or more during that period”. 


Count one alleges Adrian Lamo used the New York Times private Intranet without 
authorization causing damage in excess of $25,000 (the cost of “confirming, 
addressing, and repairing” the vulnerabilities) and altering contributors 
information. Count two alleges Lamo created, then used five usernames / passwor 
to obtain search services from “LexisNexis” valued at over $300,000. 


Bringing the charges is Special Agent Christina A. Howard of FBI Cybercrime Task 
Force who states: 


In or about late February 2002, I read an article on website SecurityFocus.com 
dated February 26, 2002 and entitled “New York Times Internal Network Hacked”. 
Article reported that ADRIAN LAMO, the defendant, had hacked into the New York 
Times’ private intranet.. 


The 


Likely based on reading that article, Special agent Christina contacted the New 
York Times who then initiated an internal investigation. The investigation 
revealed Lamo had accessed various information ranging from staff lists to social 
security numbers and created a new “super user” account. Next after a two-three 
month wait another New York Times representative contacted Agent Howard informing 
her about compromised usernames / passwords which had been used to access 
LexisNexis search facilities. LexisNexis then provided further details including 
the IP addresses used to access the service that were found to belong to various 
Kinko’s locations (which it has been reported Lamo used to carry out computer 


intrusions before) in California and search queries including among others “Adrian . 
Lamo” . 


Background: 


In relation to the case New York Times supplied copies of: 


1. Their administrative database {admin_db) / Op-Ed database (Oped_db) both 
before and after the alleged intrusion. 

2. Various log files from a proxy server, and the NYT Intranet. 

3. An email automatically generated by the creation of a new “super user” 
account . 

4. Usernames / passwords created by the new “super user” account relating to 
“LexisNexis” . 


Special Agent Christina A. Howard has been with the FBI for six and a half years, 
and has an undergraduate degree in computer science. She views hackers in general 
as those who “discover and explorer vulnerabilities and computer weaknesses in 
computer networks and software” and that carry out their activities using “hacker 
tools that can be either custom written software code or, as is more common, 
software readily available for download on the internet or for purchase”. 


Related Links: 
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Adrian Lamo Speaks With Leo Before Arrest, TechTV 
Exclusive Video of Lamo's Surrender, TechTV 

Adrian Lamo Deposition, FindLaw.com 

Lamo surrenders, is released, Security Focus 

Adrian Lamo charged with computer crimes, Security Focus 
Lamo’s Adventures in WorldCom, Security Focus 
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FOR IMMEDIATE RELEASE CONTACT: U.S. 
ATTORNEY'S OFFICE 


SEPTEMBER 9, 2003 MARVIN SMILON, HERBERT HADAD, 
MICHAEL KULSTAD 

PUBLIC INFORMATION OFFICE 
(212) 637-2600 

FBI MARK F, MENDELSOHN 

JOSEPH A, VALIQUETTE (212) -637-2487 

JAMES M. MARGOLIN 

(212) 384-2715, 2720 


U.S. CHARGES HACKER WITH ILLEGALLY 
ACCESSING NEW YORK TIMES COMPUTER NETWORK 


JAMES B. COMEY, United States Attorney for the 
Southern District of New York, and PASQUALE D’AMURO, the 
Assistant Director in Charge of the New York Office of the 
Federal Bureau of Investigation, announced that ADRIAN LAMO was 
charged in Manhattan federal court with hacking into the 
internal computer network of the New York Times. LAMO 
surrendered today to federal authorities in Sacramento, 
California. 


According to a two-count criminal Complaint 


unsealed today in Manhattan federal court, on February 26, 2002, | 


LAMO hacked into the New York Times’ internal computer network 
and accessed a database containing personal information 


{including home telephone numbers and Social Security numbers) 


1 


FBI(19-cv-1495)-2014 


for over 3,000 contributors to the New York Times’ Op-Ed page. 

As described in the Complaint, soon after being 
notified of the computer intrusion, the New York Times conducted 
an internal investigation and confirmed that an intruder had in 
fact hacked into its network and accessed the personal 
information for contributors to the Op-Ed page. In addition, 
according to the Complaint, the.Times determined that the 
intruder had added an entry to that database for “Adrian Lamo,” 
listing personal information including LAMO’s cellular telephone 
number (415) 505-HACK, and a description of his areas of 
expertise as “computer hacking, national security, 
communications intelligence.” 

The Complaint states that the New York Times later 
learned that while inside its internal network, LAMO had set up 
five fictitious user identification names and passwords 
(“userids/passwords”) under the New York Times’ account with 
LexisNexis, an online subscription service that provides legal, 
news and other information for a fee. The Complaint charges 
that over a three month period, those five fictitious 
userids/passwords conducted more than 3,000 searches on 
LexisNexis; in the month of February 2002, the five 


userids/passwords conducted approximately 18% of all searches 


FBI(19-cv-1495)-2015 


performed under the New York Times account. 
According to the Complaint, the unauthorized 
LexisNexis searches included searches for “Adrian Lamo”; 


searches for other individuals with the last name “Lamo”; 


searches using the Northern California home address of LAMO’s 
parents; searches for various reputed hackers; and searches for 
various known .associates of LAMO. The LexisNexis charges 
incurred by these five accounts was approximately $300,900, 
according to the Complaint. 

In an interview with a reporter from an online 
publication called “SecurityFocus.Com” later on February 26 
2002, LAMO admitted that he was responsible for the New York 
Times intrusion, it was charged. 

The Complaint also identifies a series of other 
computer intrusions for which LAMO has acknowledged 
responsibility in interviews with members of the press. In 
some instances, according to the Complaint, LAMO personally 
admitted responsibility for the computer intrusion to 
representatives of the victimized company, explaining how he 
hacked their computer network, and providing corroboration that 
he was, in fact, the intruder. The other intrusions, and the 


approximate dates according to the charges, are: (1) 
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Excite@Home, May 2001; (2} Yahoo!, September 2001; (3) 
Microsoft, October 2001; (4) MCI WorldCom, November 2001; (5) 
SBC Ameritech, December 2001; and (6) Cingular, May 2003. 

LAMO, 22, is scheduled to be presented before a United 
States Magistrate Judge in Sacramento, California, federal court 
later today. 

If convicted, LAMO faces a maximum sentence of 15 
years in prison and a $500,000 fine. 

Mr. COMEY praised the investigative efforts of the 
Federal Bureau of Investigation’s Cybercrime Task Force and 
Computer Hacking and Intellectual Property Squad, and also 
thanked the New York Times, LexisNexis, Yahoo!, Microsoft, MCL 
WorldCom, SBC Ameritech, and Cingular for their assistance. 

Assistant United States Attorney MARK F. MENDELSOHN is 
in charge of the prosecution. 

The charges contained in the Complaint are merely 
accusations and the defendant is presumed innocent unless and 
until proven guilty. 
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®@ev-2om wh Ghar ten TU * | 
GAAS Det’ LAM WBE 7 
@ zp wee wl Treelamo. Con. 


FeUDOS 


FBI(19-cv- 1495)-2059 


FD-340 (7-19-00) 


Universal Case File Number ee 


Field Office Acquiring Evidence 


Serial # of Originating Document b3 -2 
b6 -1,6 


Date Received 4! g L 2003 ; b7c -1,6 
BIE -3 


From 


a eee 


‘of Contributor) 


1 State) 
By SA 


ToBeRetumed [1 Yes w No 
Receipt Given [1] M No 
Grand Jury Material -.Disseminate Only Pursuant to Rule 6 (e) 
Federal Rules of Criminal Procedure 
+ Yes rf No 
Federal Taxpayer Information FTD 
[I Yes w@ No 


THe! ADRIAN LAO: 
New York Twnes - Veh; 
Compoter \atrus (ores 
OO; NY 

Reference: FD-302. 


(Comminication Enclosing Material) 


b6 -6 
Description: FA) Original notes re interview of [| b7c -6 


| 
FBI(19-cv-1495)-2060 


Gite fh 
sth ee Le 


FBI(19-cv-1495)-2061 


Colne er wr  aslia \e ernvand 


~ Comprnter, b6 -5,6 
- bic -5,6 


FBI(19-cv-1495)-2062 


Pi chain wey be. Prvelved Mf 


| 
| 
eR eC eT 


FD-340 (Rev. 3-8-01) 


Universal Case File Number 


Field Office Acquiring Evidence er 


Serial # of Originating Document eee) ey een 


Date Received q /, /o3 


From 


(Name of Contributor) 


(Address of Contributor) 


: (City and State) 


To Be Returned Yes ee 


Receipt Given Yes No 
Grand Jury Material - Disseminate Only Pursuant to Rule 6 (€) 
Federal Rules of Criminal Procedure 


Yes No 
Federal Taxpayer Information (FT) 
A Yes LY No 
id bé -1,5 
b7c -1,5 
Adriaw Lawo 


New york Tae Vichrn 
Compete Toksta, 


Tithe: 


Reference" 


(Communication Enclosing Material) 


Description: eee notes re interview of 


ongacl neki Ae tHe ink w 


FBI(19-cv-1495)-2064 


isles 


12 Suhet}y bene chills 


Conhlt vvee/Oonpehh 


herr. skills 


ye skull 


ye . eles i 
cb CP ep ves be / by Yel S 


FBI(19-cv-1495)-2065 


b6 -1,3,5 
bic -1,3,5 


BIE -1 


FBt(d9-cv-1495)-2066 
ti 


me ———— | 


i 


! 


FD-340 (Rev. 3-8-01) 


Universal Case File Number 


Field Office Acquiring Evidence 


Serial # of Originating Document 2 3 
$$ t = 
Date Received 04 | 112003 b7c -1 
t T bIE -3 

From Sel 

(Name of Contributor} 

{Address of Contributor) 
By 8) wn 
To Be Returned Yes No 
Receipt Given Yes No 


Grand Jury Material - Disseminate Only Pursuant to Rule 6 (e) 
Federal Rules of Criminal Procedure 


Yes @ No 
Federal Taxpayer Information (FT 


Yes ED wo 
Tite: PY DP QA Lipid; 
Ree YOM CHES -VICTIN 
Compased iniTPAS ions 
OOrNY 


Reference’ 


(Communication Enclosing Material) 


FBI(19-cv-1495)-2067 


U4 ee % 


b6 -6 
b7C -6 


FBI(19-cv-1495)-2069 


— Polvonl Lama’) Fao prato 


Lack contact Cuweud i 
= a publicefional. 

a pgeg Ta pre folk Sem? tole Mactash 
Cxeeryone, has cfeQae hemac et Securit hy Compan on 
Accord to peutucll prt SSN, wecer offered Wsts, 
MOEDEMOTON , ; ; 

Nepowmtet gral preteona , Bact otict Not alruse « 
Snavcol £ Soicldstr explant ak kf 
v 


FBI{19-cv-1495)-2070 


bé -3,5 
-b7C -3,5- 4 


FBI(19-cv-1495)-2072 


Question Worksheet 


ndividual background questions 


Lamo : 


b6 -3,5 
b7c -3,5 
bTE -1 


ee 
Wwto rq at duagy FBI(19-cv-1495)-2074 


FD-340 (Rev, 3-8-01) 


Universal Case File Number 


Field Office Acquiring Evidence 


Serial # of Originating Document 


Date Received Si lig | is) ie) 
From Setp 


(Name of Contributor) 


(Address of Contributor) 
(City and State) 

By 

To Be Retumed Yes @ No 

Receipt Given Yes ‘No 

Grand Jury Material - Disseminate Onl} Pursuant to Rule 6 (e) 


Federal Rules of Criminal Procedure 
Ol Yes @ No 
Federal Taxpayer Information (FT!) 

Yes No 


has POE EN LAMO; 

Nw T mes- VICK. 
Cont puter tn sO 

COIN’ . 


Reference 


(Communication Enclosing Material) 


Description: Original notes re interview of 


EBL(19-cy-1495)-2077 


Une BOL BAM, MSN, Uanoo. 


AS MAS. aw Patoo poatkQenes, Alreat a 
“Unclear Challoage't pize Like to CaMouge , 


ho Farad 


> Duis Recus pasSwWord Luokto (Cot werk 
Man howe Bean woot By Chen people. 


FBI(19-cv-1495)-2079 


b6 -2 


Nocharie.. COM | ae . : - 2. BIC -2 


POL For One. 
on 


Aner BURN ACOM PukeR, 
OWL Ron cue Login Rechts. 


b6 -2 
b7e -2 


ona pa ® | 


FBI(19-cv-1495)-2080 


FD-340b (Rev. 87-97) 


Universal Case File Numbe 

Field Office Acquiring Evidence 
Serial # of Originating Document 
Date Received _09|1\|03 


From ADRIAN LAN, 


(Name of Contributor) 


(Address of Contributor) 


ot 


To Be Returned 0 Yes No 

Receipt Given O Yes No 

Grand Jury Material - Disseminate Only Pursuant 

to Rule 6 (e}, Federal Rules of Criminal Procedure 
CO Yes No 

Title: 


Reference: 


{Coramunication Enclosing Material 


Description: C1 Original notes re interview of 


Qomeést sopra Ge Angie 
UANLO ~ priands, Fingerptt dads, 
FO-2S, ARREST LOG, uarsnats 


Korn , WALLA forms. 


FBIDOU 


e % 


b3 -2 
bé6 -1 
b7c -1 
DIE -3 


FBI(19-cv-1495)-2081 


FD-340a (Rev. 11-12-89) @ 


(Title) 


{File No.} 


aa 


Jo be relurned 


Oisposition 


FBI(19-cv-1495)-2082 | 


va nit 
y LEAVE BLANK CRIMINAL {STAPLE HERE} , LEAVE BLANK 


STATE USAGE 

sre seco%0 
ae weseos __arrnonwurecians —_animos sean | 
“STATE USAGE LAST NAME, FIRST NAME, MIODLE NAME, SUFFIX: 


Lamo,Adrian Alfonso 


“SIGNATURE OF PERSON FINGERPEINTED ‘SOCIALSEGURITY NO. TERE CLANK 
i AG se 042746804 
K fe TES 

‘AUASESIATDEN 


LAST NAME, FIRST NAME, MIDDLE NAME, SUFEIX 


FaINO. ‘STATE IDENTIFICATION RO. DATEOF ERT MM BD Sex RAGE WEIGHT ‘weiget ees Wain 


19810220 M. a Neg 130 HAZ BRO. 


4.R-RING 


o.LANG 


HP 4100TN. 


FBI(19-cv-1495)-2083 


RAD PICHT FOUR FINCTRS TANEN S’MULTANEQUSLY 


LTnuxe 


FEDERAL BUREAU OF INVESTIGATION, UNITED STATES DEPARTMENT OF JUSTICE 
CRIMINAL JUSTICE INFORMATION SERVICES DIVISION, CLARKSBURG, WV 26305 


PRIVACY ACT OF 1974 (PL, 89-579} AEQUIRES THAT FEDERAL, STATE, OR LOCAL AGENCIES INFORM INDIVIOUALS WHOSE SOCIAL SECURITY NUMBER IS REQUESTED WHETHER 
SUCH DISCLOSURE IS MANDATORY OR VOLUNTARY, BASIS OF AUTHORITY FOR SUCH SOLICITATION, AND USES WHICH WILL BE MAGE OF IT. 


JUVENILE FINGERPRINT DATE OF ARREST ORL NYFBINYOO 
suBMIssiON ves mM op vy CONTAIBUTOR 00 
20030911 fort eee 
TREAT AS ADULT ves NEW YORK» N¥- 
. REPLY YES 
DESIRED? 
SEND COPY TO: DATE OF OFFENSE PLAGE OF BIATH (STATE OR COUNTRY) ‘COUNTRY OF CITIZENSHIP 
(ENTER OF) Wee as ca 
MA us 
20030911 
WISCELLANEOUS NUMBERS SOARS, MARKS, TATTOOS, AND AWPUTATIONS 
NONE 
TEGIDENGEVCOMPLETE AODREGE ory 
3506 Lynnmar Way, Carmichael, CA, US 95608 
OFFICIAL TAKING FINGERPRINTS TOGAL JDENTIFIGATION/EFERENGE PHOTO AVAILABLE? 


INAME Of NUMBER) 


PALM PRINTS TAKEN? yes 


EMPLOYER: {Ff U.S. GOVERNMENT, INDIGATE SPECIFIC AGENCY, ‘OCcURATION 


FORMER NETLIOR K. ADpt1A) 


Unemployed 


CHARGE/OTTATION DISPOSITION 
*20030911 1 
2609 - Fraud and Abuse - Computer Hacking 


z z ; 
a 3 

ADDITIONAL ‘ADDITIONAL 

“ADDITIONAL INFORMATION/BAGIS FOR CAUTION ‘STATE BUREAU STAMP 


FBI(19-cv-1495)-2084 


FD-249 REMS-11-09) 


y LEAVE BLANK CRIMINAL {STAPLE HERE) | LEAVE BLANK 
STATE USAGE f [ i 
srestcouo 1. 
ee a ee ae oe 
Sine ERE 7 AST WAN, RAST Wire, WaDOLE WANE SOR 
UUTHIRs ; 
Lamo,Adrian Alfonso 
y : 
iH wygev By zl 
SERATORE OF PERSON PNGERPAINTED TCI BEERS. rr 
QQ. 7a o4a74se04 
x a. 
AUnETSRIEN 
ASTHAE, PRT Wie WODLE NAME. SUFFI 
Fern. ‘STATE IDENTIFICATION NO, DATEOFER:RTH MM OD YY SEX | RACE HEIGHT WEIGHT EYES HAIR 
19810220 M Ww NES 130 HAZ BRO 


LRTHUVE 


4B FINS 


BB Foun reccene vanensnnanzousey 


Likuws 


ORT FOUTE, 


“ FBI(1S-cv-1495)-2085 


TAKIN SMULTANZOUSLY 


From: 
Sent: 
To: 
Subject: 


JABS TRANSACTION IDENTIFICATION NUMBER: 577201 


“EPTS TRANSACTION CONTROL NUMBER: 127.0.0.1.00702 


BOOKING NAME: LAMO, ADRIAN ALFONSO 
ARREST DATE: 08/11/2003 


Fingerprints have been submitted to IAFIS. Response should be sent within 2 hours. This 
transaction can be tracked at: 


http://149.101.253.5 


FBI(19-cv-1495)-2086 


From: 

Sent: b7E -1,3,9 
To: 

Subject: PONSE RECEIVED 

EFTS TRANSACTION CONTROL NUMBER: 127.0.0,1.00702 

JABS TRANSACTION IDENTIFICATION NUMBER: 577202 

BOOKING NAME: LAMO, ADRIAN ALFONSO 

ARREST DATE: 09/11/2003 


TAFIS response received: New FBI number assigned. 


FBI NUMBER: 665020CC1 
FBI MASTER NAME: LAMO,ADRIAN ALFONSO 
STATE IDENTIFICATION NUMBER: 


JABS data is for official criminal justice use only. Unauthorized or improper release is 
prohibited. Secondary dissemination must be in accordance with NCIC policies and 
procedures. | 


TIAFIS RAP SHEET ATTACHED 


FBI(19-cv- 1495)-2087 


577201_rap 


FBI# 665020CCc1 SID OCA 
LAMO,ADRIAN ALFONSO w 509° 1981/02/20 


FPC SEX M 


HENRY CLASS API 


NYFBINYOO FBI 
NEW YORK NY 2003/09/11 


A SEARCH OF THE FINGERPRINTS ON THE ABOVE 
INDIVIDUAL HAS FAILED TO DISCLOSE PRIOR ARREST 


DATA. CIJIS DIVISION 
2003/09/11 FEDERAL BUREAU OF INVESTIGATION 


Page 1 


FBI{19-cv-1495)-2088 


577201_rap 


NYFBINYOO 

SPECIAL AGENT IN CHARGE 
FEDERAL BUREAU INVEST 
23RD FLOOR 

26 FEDERAL PLAZA 

NEW YORK,NY 10278-0004 


Page 2 


FBI({19-cv-1495)-2089 


: “~- @ 
FD-395 (Rev. 2-28-97) : 6 e 


ADVICE OF RIGHTS 
Place_Qte Federat ‘Pla Za, ERY 
Date_ Fi fOS 


Time_ 2: DOr 
YOUR RIGHTS 
4 ( ABefore we ask you any “uestions, you must understand your rights. 
° fe 4#Xou have the tight to remain silent. 
a C#Anything you say can be used against you in court. 
(Jaa ou have the right to talk to a lawyer for advice before we ask you any questions. 
& fo. You have the right to have a lawyer with you during questioning. 


&/alf you cannot afford a lawyer, one will be appointed for you before any questioning if you wish. 


a kat you decide to answer questions now without a lawyer present, you have the right to stop 
answering at any time. 


WAIVER OF RIGHTS 


[have read this statement of my rights and I understand what my rights are. Actthistime;tanr 
© 1 Yer presen b6 -1 


Signed OnCeTe ee ak 


Witnes| 


| Witnes 


Time: I-94 pr 


Adnan Lomo dots net wisk fo wove Wis rls at Hus 
I Hime ‘ 


FBI(19-cv-1495)-2090 


7 
Porat BUREAU OF investi@xt0N 
MEDICAL TREATMENT/REFUSAL FORM. 


pate 9/1/03 


CHARGES j . 
NARRATIVE: Compicder {psirsion He <1 
TITLE:__(F use:_{030 b7C -1 
NARRATIVE: 


TITLE:_{& usc: 4049 


DATE OF OFFENSE: DATE OF ARREST: 9/1/02 \ 


PLACE OF ARREST: Nw) ort, uy ( 


ARRESTING OFFICIAL(NAME) 


NATURE OF ILLNESS/INJURY: (OLD IN. ( NEW INI. 
tootn_infecHon 
If TREATED BY E.M.S. OR HOSPITAL 
FILL OUT THE FOLLOWING 
TREATED BY DR/E.M.S. 
HOSPITAL: 
ADMITTED ( )YES ( UNO 
DIAGNOSIS: MEDICATION PRESCRIBED : 
Ove Cowie 
YES (JNO 
IF PRISONER REFUSES MEDICAL TREATMENT 
FILL OUT THE FOLLOWING 
DATE: TIME: PRISONER’S SIGNATURE: 


REMARKS: (PRINT) . 


hQS resorption he ciopped OF bday © Duane Reade 


FBI(19-cv-1495)-2091 


a 


UNITED SLALBS DELP AK LIVIN LE Ul 9. ALU 
UNITED STATES MARSHALS SERVICE . 
SOUTHERN DISTRICT OF NEW YORK 


ARRESTEE INFORMATION 
Before any arrestee can be processed by the USMS any and all medical problems/conditions must be dectared. 
This form must be completed for each arrestee and given to the responding USMS personnel before the arrestee 


ou be received for processing. 
Arrestee name: A tf ia al Lé x” 


Does arrestee have a prior federal arrest? Circle: NO 
If yes, please list the arrestee’s USMS number. a 
If you cannot identify USMS number, please provide arrest information (HE: Mate, arresting agency, location) 
OF . e 


Arrestee’s representation for this days proceeding: (Circle) Ai CJA” Fetained 


tuberculosis, HIV, AIDS, hepatitis etc.)? Circle: NO 
Does arrestee require medication/medical atfention for this condition? Circle: VES 
gent, currently possess at least one days dosage of the arrestee’s medication? 


aXe a . . 
i Sys ADS, era_clicestorn 
ot ay . 
ov Se omplesgn ory ben PELE open eg mevtines 


‘ 
A la 
MRE Ral ha "eat oe 
Does arrestee require tnedicat F@ Jp attenti St nb Gondifion Lae SE haepepead 


Do you, as the arresting agent, currently possess at least one days dosage of the ee medication? 
Circle) YES NO 


Does arrestee ‘have any ‘ong term médical ‘condition : so" {to include: heart problems diabetes, asthma,- 


Explain: 


Is the arrestee a drug addict/user? Circle: YES £ 
If yes, does this require any special medica Sean (IE: methadone treatment)? Explain: 


professional? Circle: O (Please attach) 


Do you, as the es ae possess a medical clearance/fit for confinement letter from a healthcare 
Ss . 
ARRESTEE PROCESSING CHECKLIST 


Please check when completed 
1. Have you completed any and all USMS paperwork. 
. To include: USMS 312 (Please fill out all forms as completely as possible) 
Vai Attached a photo of arrestee to paperwork. 
bs. Fingerprint cards 
*| for USMS file 
*| for the FB! for FPC classification 
____ WG. Fitled out and attached the BOP-9. 
____ +5. Strip searched arrestee. 


6. Yaken any : : 
AGENCY: <e\ / RIG 4 
CONTACT # WHILE IN THIS BUILDING: es 
+4s4NOTE F Pr 


Be advised, the USMS provides the COURTESY of holding and producing arrestee prior to the arrestee’s magistrate 
court appearance. However, the arrestee is not considered a USMS prisoner until a U.S. Magistrate Judge REMANDS 
said arrestee to USMS custody. This means that as the arresting agent, you must be available at all times to respond 


fo any and all matters concerning your arrestee, as you are the responsible party, 
United States Marshals Service Potiey and Procedures Manual 5.¢-1.fa) 


1 


FBI(19-cv-1495)-2092 


Defendant Name DOB SSN“ @ Race — ) Arrest Date 
Lamo,Adrian Alfonso 02/20/1981 042-74-6804 White Male 09/71/2003 


FBI(19-cv-1495)-2093 


Defendant Name DOB SSN Race “@ Arrest Date 
Lamo,Adrian Alfonso 02/20/1981 42-74-6804 White Male 


09/11/2003 


Front Side 


FBI(19-cv-1495)-2094 


R-84 (Rev. 5-14-80) FINAL DISPOSITION REPORT 


Leave Blank 


Note: This vital report must be prepared on each individual whose arrest fingerprints have been forwarded to the FBI 

Identification Division without final disposition noted thereon. if no final disposition is available to arresting agency, also 

obtain subject's right four finger impressions on this form, complete left side and forward the torm when cas2 referred to 

prosecutor and/or courts. Agency on notice as to final disposition should complete this form and submit to: Director, FBI, Washington, D.C. 20537, 
Attention: Identification Division. 

(See instuctions on reverse side} 


FBINo. Final Disposition & Oate 
(if convicted or subject pleaded guilty to lesser charge, include this 
modification with dispostion.) 


Name on Fingerprint Card Submitted to FBI 


Last First Middle 
| 
Date of Birth, Se: 
Henry 
Fingerprint 


Classification 

From FBI 1-8 Response 
State Bureau No. (SID) Social Security No. {SOC} This Form Submitted By: 

(Name, Title, Agency, ORI No., City & State) 


Contributor of Fingerprints (Include complete name and location of agency, 
together with ORI number.} 


Signature Date 
Tite 

‘Arrest No. (OCA) Date Arrested or Received 

(1 COURT ORDERED EXPUNGEMENT: 

Return Arrest Fingerprint Card to Contributing Agency; 

Certified or Authenticated Copy of Court Order Attached 
Offenses Charged at Arrest Right Four Fingers Taken Simultaneously 
Itadditional space is needed, check C) and continue on reverse side of this form. FBI(19-cv-1495)-2095 


i oo 


irs 


. (f subsequent action taken to seal or expunge record, attach certified or authenticated copy of court order to this form so that FBI can return arrestec’s 


INSTRUCTIONS 


The purpose of this report is to record the initial data of an individual's arrest and thereafter secure the final disposition of the arrest at the earliest 
possible time from either the arresting agency, the prosecutor or the court having jurisdiction. (INTERIM DISPOSITION INFORMATION. ¢.g.. 
RELEASED ON BOND, SHOULD NOT BE SUBMITTED.) The SUBJECTS NAME, CONTRIBUTOR AND ARREST NUMBER should be exactly the 
same as they appear on the fingerprint card IN THE FILES OF THE FBI, The FBI number should be indicated, if known, Agency ultimately making final 
disposition wil complete and mail form to: FBI identification Division, Washington. 0.C, 20537. 


The arresting agency shout: fl! ia all arrest data on left sice of form and obtain the finger impressions of the sigh! gers simultaneously, This 
should be dene at the same time as the full set of tingerprints are taken on the arrest fingerprint card. tf the arrest is disposed of by the arresting 
agency, as where the arresiee is released without charge, then the arresting agency should fit in this finat dis; ‘for: and miai} forra to FBI 
Identification Bivision. Of course, if final disposition is known when arrest fingerprint card is submitted it should be neted thereon and this form is then, 
unnecessary. In the event the case goes to the prosecutor, this form shoulc te forwarded to the prosecutor with arrestee's case file. 


The prosecutor should complete the form ta show final disposition at the prosecution level if the matter is not being referred for court action and 
thereafter submit form directly to FBI Identification Division, {t court action required, the prasecuior should forward torm with case file to court having 
jurisdiction. 


The court should complete this form as to fina! court disposition such as wher arrested person ig acquitted, case is dismissed, on convirtion and 
when sentence imposed or sentence suspended and person placed on probation 


When arrested person convicted or enters guilty plea to lesser of different offense ! ed when originally arrested, this information should 


be ciearly indicated, 
fingerprints to original contributor. 


itis vitally important for completion of subject's record in the FBI Identification Division files that Final Disposition Report be submitted in every 
instance where fingerprints previously forwarded without final disposition noted thereon 


FOR ADDITIONAL INFORMATION 


FBI(19-cv-1495)-2096 


"US. GPO 1994.501-163.12708 
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UNITED STATES DEPARTMENT OF JUSTICE 
FEDERAL BUREAU OF INVESTIGATION 
Receipt for Property Received/Returned/Released/Seized 


. b3 -2 
File 


On (date) 4 { (paes item(s) listed below were: 
14 Received From 

Returned To 

[J Released To 

[] Seized 


(Name AGRA Lomo 
(treet Address) SOOlY LRN MAR LORY, 
ciy_Cocemicnael, CA Ile 


Description of Item(s): 
(YD O@onis ET Weavers 

OQ) ACID REDUCE. 

(CD CAL FoemA  IDETIFcATION CARO Di225473 
OQ) DuAwe Re Ape DeUG  cusinmeer ReceiclT 
OD paw Shoelaces 

QV) abe 

CD Beit black Uartner 

GQ) ReceiPr Hoe Jarsa Joce 

() ove Unikd Delay wecGcahar receiok 

(D one cess per 

OY ae lip halm 

(a) succeed Sum ast bars 

CO black sacker 


b6 -1 
b7¢ -1 


= 
Received From: Anh 


fenaturehr4g-cy-1495)-2097 


y 


“=~ CALIFORNIA #4 


IDENTIFICATICN. CARD. 


ce 


ADRIAN ALFONSO Lal 
1785 ALABAMA ST 
SAN FRANCISCO CA 94110 


SEX: M HAIR: BRN EYES: HZL 
RT: S-O9 WT: 150 BOB: a2-20-81 


LAGE 271M 2802 


4 


1495)-2098 


@- 1495)-2100 


J 


ect suntight, 


Oa not expose to excessi 


< 


= 
& 
og 


: " * DELAY VERI i) 
ENS To Bos eae 


CENT ID: gtr 
LAMO/ADRIAN ~ 


OREGINALLY HELD. SPACE ON: ; 
UNITED. 40 11SEP93 SFO: ORD 

WAS DELAYED: 3 

} 24 HRS. 

BECAUSE: 

DELAYED 

REACCOMMODATED ON: 
670 ORD 70 EGA. NiseP 


FBI(19-cv-1495)-2101 -. 


Ant ra 
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UNITED STATES DEPARTMENT OF JUSTICE 
FEDERAL BUREAU OF INVESTIGATION 


Receipt for Property Received/Returned/Released /Seized b3 -2 

. b6 -5 
File # b7e -5 
b7E -3 


On (date) Qa \i NWO item(s) listed below were: 


Received From 
f4 Returned To 
Released To 
Seized 


i (Nam¢ 


(Street Address) B2 ea Sre. et 
(City) PN LN 


Description of Item(s): 


ADRIANO CAWD sumed Over 40 she custody 
Of Celinee atomeny Or next pevasd 
' +on0rDu. 


Received By: Received From: 


FBI(19-cv-1495)-2104 


FD-597 (Rev 8-11-94) ® @ Page fig _/ 


UNITED STATES DEPARTMENT OF JUSTICE 
FEDERAL BUREAU OF INVESTIGATION 


+ —ed/Returned/Released/Seized 
File # 


On (date) alu loz item(s) Hsted below were: 


Received From 
& Returned To 
Released To 
Seized 


(Name) Abe AN LAWOD 


(Street Address) 35C0H LANNMAR. WAY 
(City) CARNICnPeW. , CR 


Description of Item(s); 


G) Hack petit 


C22 PAIR oe spec lAcs 


CO ootie. Acie Renocee piles 


CD lonttt es CF ceons 


C1) ipenbPioaton Cam CG Di225793 


CD Deray ven@oatiad ON MED TeKerT 
QQ) Sucreed har 


i) lin balan 
Cees pen 


(De haga Tums 


Received By: ( : c —<—S Received From: 
(Signature) 


FBI(19-cv-1495)-2105 | 


NWwYS Oswrdown ; 
Beer ra 
eae You, a vars hee 


Tw emyency Newb 
| eal ase Cee ~h 


“Z2Et) Bre - Ooo FBI(19-cv 
ON 


FBI(19-cv-1495)-2107 


«U.S. Department of Justice 


United States Marshals Service 
USM Form 312. Prisoner Intake 


CIRCLE ONE: SAFEKEEPER ( PRISONER LODGED OVERNIGHT IN } BURR GIDER Gi 2oo8 
MCC (NYC)..............MDC(BROORLYN).........OTHER, OR STREET ARREST 
USMS NO. - LAST NAME FIRST NAME MIDDLE NAME 


Lomo Adnan Atbuso 


SEX RACE HAIR COLOR EYE COLOR HEIGHT WEIGHT 
tt 

M _w brews haze] 5'4 120 
BIRTHDATE - AGE PLACE OF BIRTH STATE CITIZENSHIP 

2/90 1 22 Poser Ags 
EBL# SOCIAL SECURITY NO. “LS. ALIEN # 

O4D- 74 (0804 
STREBT ADDRESS APARTMENT # CITY STATE ZIP CODE 
: 
BSolp Lyrnmar Waxy Carmichael __CA__ 450k 
TELEPHONE # (AREA CODE) MARITAL STATUS EDUCATION LEVEL 
{oe date Sole GED 
BEEPER # CELL PHONE # 
cai Ne 
. ARREST INFORMATION 
ARRESTING AGENCY 
AGENCY ADDRESS OF ARREST OR LOCATION ARRESTDATE _ CASE 
Fé! AU Federal DPlazoe 4s ,03 
*CHARGE .... MANDATORY...........- EXAMPLE ... 21 USC 846,.... DRUG CONSPIRACY woe 
UNIVERSAL PRECAUTIONS... T.B,HEPATITUS, BCT... EXPLAIN 


SECURITY CAUTION YES or i) EXPLAIN 


FBI(19-cv-1495}-2108 


ALIASES, NICKNAMES, STREET NAMES 
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FBI(19-cv-1495)-21 


RELATIVES 
WIFE, GIRLFRIENDS, CHILDREN, BROTHERS, SISTERS, AUNTS, UNCLES, OTHER RELATIVES RESIDING IN U.S. 


LAST NAME FIRST NAME RELATION PHONE # D.O.B. 


LAST NAME EIRST NAME __ RELATION PHONE #f D.O.B. 

ee ee 

LAST NAME FIRST NAME RELATION PHONE # DOB. 
Lt 

ADDRESS : APT. # 

LAST NAME FIRST NAME RELATION PHONE # D.OB. 
Lot 

ADDRESS :__ APT. # 

LAST NAME FIRST NAME —_—RELATION PHONE # DOB. 
Lt 

ADDRESS : APT. # 

LAST NAME FIRST NAME RELATION PHONE # DOB. 
Lt 

ADDRESS : APT. # 

LAST NAME FIRST NAME RELATION PHONE # DOB. 
Lt 

ADDRESS : . APT. # 


FBI(19-cv-1495)-2 14] 


FINANCIAL INFORMATION 


@ 


BANK ACCOUNT TYPE ACCOUNT NUMBER 
CITY STATE BRANCH USED 
MILITARY INFORMATION 
BRANCH OF MONTH/ YEAR MONTH/ YEAR TYPE OF RANK AT 
“vit ENTRY DISCHARGE DISCHARGE DISCHARGE 
REMARKS: 
PRIOR ARREST RECORD 
(LOCAL, STATE & FEDERAL } 
AGENCY DATE OF ARREST CHARGE 
b6 -1 
b7¢ -1 
REPORTED BY: Ht 
[DATE 


REVIEWED BY: 


PRINT DUSM'S NAME 


DATE f 


FBI(19-cv-1495)-2142 


q 


\ 


NYU DOWNTOWN nose ro @ 
EMERGENCY DEPARTMENT i 


AFTERCARE SUGGESTIONS TO PATIENTS £ PERGRACR IAW 22 


pare 1 lf 9” nme 42° mis Te>9452h 40522 00 


NOTE: The examination and treatment you have received in the Emergency Degfartmant isang fax ig! rove, on an amergency basis only and are not 
intended to substitute for or an effort to provide coniplete and comprehensiv medical ot ares Ravd further sei dgbrbiif@ybur amergency care, 
cali the Hospital at (212) 312-5000. 
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Adrian Lamo Speaks With Leo Before Arrest 


The gray-hat hacker talked with ‘The Screen Savers’ as he waited to-hs 
before turning himself in. 


By Tom Merritt % A 


According to SecurityFocus, Adrian Lamo, a famous hacker who exploits security holes and 
helps companies fix them, is being hunted by the FBI. Lamo called "The Screen Savers" at 
the top of the show. 


Lamo hacked into the website of The New York Times in February 2002 and took the Social 
Security numbers of several people. He then added his name to the list of contributors to > 
The New York Times and notified the paper of what he'd done. The Times responded by abt 


threatening to prosecute. ay Avigaes St eee, (on) —» ms 


This morning Trigger Street Productions, a pu production studio formed by actor 
Kevin Spacey in 2002, called Leo and mentioned that Lamo's parents were served with a 
warrant for his arrest. The folks at Trigger Street have stayed with Lamo to document his 
arrest. 


Adrian Lamo made arrangements with public defenders to turn himself in. He talked to us 
by phone before he did so. 


Two days ago, according to Lamo, the FBI tipped its hand and let him know it wanted him. 
Lamo said the FBI wanted to search his parents‘ premises, but his mother refused to let its 
agents in. According to Lamo, the charges might relate to the criminal complaint by The 
New York Times. 


He said he intends to turn himself in after he reviews the charges. Although the FBI isn’t (n@ rie ngersh i 
saying what the charges are, Lamo said he thinks he'll be allowed to know the charges on 
before he turns himself in. He expects the charges to be reasonable and he said he'll 

defend himself rigorously. 


“This will not be a slam-dunk prosecution," Lamo said. "[But] I'm worried. | don't know what's 
geing to happen." 


Lamo said he didn’t know if he would be arrested immediately after he got off the phone. 


“It's a shame it had to come to this,” he said. "| intend to show that this sort of thing can't be ab 
seen as a deterrent. I've done things that people see as illegal and probably are illegal, but t 
don’t think !'ve done anything wrong." 


“{ don’t think things happen by accident. | don’t think that I've done anything wrong. | don't 
think the FBI is doing anything wrong," he said. be -4,5 


Lamo said he was going to a safe place to review his legal options after he had talked with 
Us, although his lawyer has advised him to turn himself in as soon as humanly possible. 
Lamo also said he intends to answer for his actions. 
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&} Manage &-mail 5B] View Message 
Ei Web Mail. To: 
Check Mail een eae 
New. Message Date: Thu, September 25, 2003, 10:06:00 ; wie 2508 
Address Book. Subject: Re: Information Regarding Adrian Lamo 
Distribution Lists Biview neuen] (Bivew soorl 
Spam Contro} 
thank{ | 
As discussed|________from my team has been 
working with an FBI agent out of New York regarding the 
Lamo case. The contact information is as follows: 
Name; 
E-mail] 
Phon : bé -1,2,5 
b7C -1,2,5 


Please feel free to forward any inquires to myself or 


Co] 


Thanks, 
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Subject: 

Sen 

To: 

Ce: 


X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0 


Hey look, we're famous! Is there any further information on 
the nature of the problem? 


http: //news.excite.com/news/ap/011205/18/worldcom-security 


WASHINGTON (AP) - A security hole at telecommunications giant 
Worldcom 

left internal networks at several of the nation's top companies open 
to hackers, according to Worldcom and the security researcher who 
discovered the problem. 


Adrian Lamo, a consultant in San Francisco, worked with Worldcom to 
fix 

the months-old problem over the weekend, and the company said there 
is 

no evidence hackers exploited the security hole. 


Internal networks belonging to AOL Time Warner, Bank of America, 
CitiCorp, News Corp., JP Morgan, McDonald's Corp., Sun Microsystems 
and 

many other companies were vulnerable, he said. 


"These networks were never designed to be connected to the Internet," 
Lamo said. "They were private circuits running between locations." 


The security problem could have allowed hackers to reconfigure or 
shut 

down the corporate networks, also known as intranets, that are used 
for 

everything from e-mail to financial transactions. 


Worldcom spokeswoman Jennifer Baker said none of Worldcom's customers 
were affected. 


"Adrian worked very cooperatively with us throughout the weekend," 
Baker 
said. "It was a human error on a router." 


A router is a device that serves as a traffic light for messages on 
computer networks. 
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b7C -5 
Lamo said he found the hole by poking through Worldcom's public Web 
site. 
"Tons of times there's data that shouldn't be available to anybody 
that 
is out on a public Web server," Lamo said. 
Lamo praised Worldcom's security procedures, and said he used an 
unconventional way to enter the company network that is not often 
addressed by security experts. He stressed that he didn't attempt to 
damage the internal networks. 
Within the last several months, Lamo has found security problems at 
several major computer firms, including Microsoft and AOL Time 
Warner. : 
In September, he discovered a hole on Yahoo's news site that allowed 
him 
to alter several stories. 
In addition to Worldcom's clients, the company itself was also at 
risk, 
Lamo said. 
Lamo found ways to reset company passwords, give himself all the 
computer power of a company director, redirect e-mail and find 
personal 
information for Worldcom's employees. 
"It would have been possible for anyone who was really motivated to 
change direct deposit information for employee paychecks to arbitrary 
accounts without the employee being notified,” Lamo said. 
{ 
i 
i 
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1. New domains overshadow ICANN meeting in Stockholm 
2, ISPs fight spam from the front line 

3. Hacker helps Excite@Home toughen defenses 

4. Wireless Privacy Legislation Coming 


Woe 


May 30, 2001 
New domains overshadow ICANN meeting in Stockhalm 
WASHINGTON (Reuters) 


When it meets in Stockholm on Friday, the Internet’s top standards-setting 
body will still have to fight perceptions that it is too cautious and 
bureaucratic -- in essence, that it does not move at ** Internet speed.” 


Seven new domains selected by the Internet Corporation for Assigned Names 
and Numbers should join the likes of **.com," ‘"net"’ and **.org’’ by the 
end of the year, but hopeful additional applicants are already pushing for a 
second round. 


** The really serious question now will be how soon we can have new top-level 
domains,’ said David Maher, a Chicago attorney who serves as vice president 
of public policy for the Internet Society, a group that oversees 
infrastructure issues. 


In Stockholm, ICANN hopes to set up an oversight panel for the new domains, 
get input on how to include regular Internet users in its decisions and take 

a firm stance against alternative addressing systems that have sprung up to 
provide unofficial domains such as ** .kids’' and ** xxx.'' 


ICANN also hopes to get more help around the office with a proposed 20 
percent budget increase. The budget could run into resistance from foreign 


Pagelof9 6 -5 
b7c 


9/23/2003 


FBI(19-cv-1495)-2152 


-5 


[| _ peas AM 5/30/2001, Internet Policy News Page20f9 Pog os 


companies who complain that the organization, which must answer to the U.S. 
Department of Commerce, has not adequately represented their concerns. 


But these issues will take a back seat as anticipation grows over the 
long-awaited new domains. 


** The real issue now is, ‘Let's get it going so we can run this grand 
experiment,’’' said Elana Broitman, director of policy and public affairs 
for Register.com, which is in the process of setting up the .pro domain for 
doctors, lawyers and other professionals. 


CONTROVERSY CONTINUES 


Since it was set up by the Clinton Administration in 1998, ICANN has faced 
pressure to increase the number of available domain suffixes. 


ICANN approved seven new domains -- .biz, info, pro, name, aero, museum 
and .coop -- last November, but it rejected 40 others in the process, 
prompting criticism from commercial interests and Congress that it moved too 
slowly and selected the domains arbitrarily. 


ICANN's decision to allow Mountain View, California-based VeriSign Inc. to 
retain control of the lucrative .com domain in April also drew charges that 
it was delaying competition. 


ICANN Chairman Vint Cerf told a Congressional panel in February that the 
group was moving cautiously because it did not know what effect the new 
domains would have on the world's Internet addressing system. 


Commerce Secretary Donald Evans sent a letter to Cerf on Friday encouraging 
him to pick up the pace. 


** While I recognize ... an attendant need to maintain Internet stability and 
security, competition and selection are also critical factors. New (domain) 
entrants represent that promise,'' Evans wrote, 


ICANN hopes to translate this desire for greater speed into more manpower. 
While most registry companies will be happy to pay their share, ICANN could 
run into resistance from firms that sponsor foreign ** country code’' domains 
like .uk and .nz that feel they have not been adequately represented in the ieoke 
b7¢ -5 
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past, Maher said. 


** They may be hesitant fo contribute to an organization in which they feel 
they have a relatively minor voice,’ he said. 


NO ALTERNATIVES 


ICANN will also take a stand against so-called ** alternative root'' systems, 
which seek to bypass ICANN-mandated standards and set up domains like tech 
and video, 


Alternative root companies like New.net Inc, encourage Internet access 
providers and users to alter their browsers to view their sites. Since most 
Web users fail to go to the trouble, such domains remain invisible to 
mainstream audiences. 


Ina paper posted on the ICANN Web site, President M. Stuart Lynn says the 
structure of the Internet requires a central authority like ICANN, because 
alternative roots could direct Web browsers to the wrong sites, or e-mail to 
the wrong person. 


ICANN's deliberate approach to new domains may frustrate some Internet 
users, Lynn writes, but it is the best way to ensure stability. 


** Impatience in the context of Internet timescales is perfectly 
understandable, The outcome of orderly processes based on the wishes of the 
community, however, is assurance that the Internet will continue fo function 
in a stable and holistic manner that benefits the global community, and not 
become captured by the self-interests of the few,'' he writes. 


wok 


ISPs fight spam from the front line 
By Matt Berger 
IDG 


There is little doubt that you have a grueling job when your business card 
reads "senior abuse administrator." Scores of computer programmers and 
techies -- many of whom hold similar job titles -- gathered in San Francisco 


Thursday at SpamCon 2001 to vouch for the difficulties of their labors. 
b6 -5 
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Technical teams working behind the scenes at ISPs around the world let it be 
known at the conference that they really despise unsolicited e-mail, 
commonly known as spam. They gathered there for two days to debate the 
technical, legal and social effects spam has had on their jobs and the 
Internet as a whole. 


"Spam is definitely a problem for us," said Ava Pettit-Mountain, who works 

in the abuse department for the Boston-based telecommunication company RCN. 
"Just in terms of consumer complaints it's definitely got a chilling 

effect." 


Much of Pettit-Mountain's workday is consumed by dealing with customer 
complaints over the hundreds of thousands of e-mail messages that pass 
through RCN’s network each day. While much of her job is dedicated to 
tracking down Internet hackers that go about their rogue business on RCN's 
cable and Internet service, Pettit-Mountain said that more than half of each 
day is consumed by sorting through complaints and phone calls from customers 
angry over the junk mail that piles up in their inboxes. 


"A lot of customers -- they want a magic button," she said. “We do have some 
mechanisms in place to block e-mail but obviously we have to be conservative 
about it." 


Abuse departments at ISPs from Earthlink to UUNet Technologies -- each 
represented at the conference -- offered similar disdain for the 
overwhelming problem created by mass e-mail marketing, which often is 
distributed for illegal or unethical purposes. Many of the people attending 
SpamCon are looking for answers. 


"Technologists have always said, ‘It's a problem that can be solved with 
technology.’ End users have said, ‘Let's sue spammers into oblivion.’ I 
think it's none of the above," said Tom Geller, the director of SpamCon and 
an author and pundit on the subject. 


Finding a solution to spam has, however, left most people stumped. Congress 
has had little luck on the issue. The House of Representatives Wednesday 
slimmed down a bill that would protect consumers against unsolicited bulk 
e-mail. 
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A representative from the Federal Trade Commission (FTC), one of several 
U.S. government organizations belabored with the task of cracking down on 
spammers, said Thursday that it has limited resources in aiding consumers in 
the fight against bulk e-mail. 


"We're not an agency that can set the laws," said Jennifer Mandigo, staff 
attorney with the FTC's consumer division, "But the FTC is ready to 
generally enforce whatever (Congress) passes." 


Ted Gavin, a consultant with Nachman Hays Consulting who is helping to draft 
policy against spam for the marketing industry, said that the issue will be 
better fought by reaching the people using direct e-mail marketing as an 
advertising venue. Many companies selling products or services would have 
better luck targeting a specific audience rather than blanketing mailing 

lists with spam, Gavin said. Many marketing professionals fall victim to the 
fallacy that distributing mass e-mail is low cost. 


"The ‘Net is not a free resource," Gavin said. "Somebody pays for everything 
that gets done on the Internet. There is always a cost associated with 
sending an e-mail.” 


The cost is hard to calculate, Gavin said, but includes the resources ISPs 
use to deal with large amounts of data being sent over their networks. The 
cost is also borne by consumers who have to pay for the time it takes to 
download spam through their ISP. In fact, the European Commission said ina 
report earlier this year that spam costs European Internet users about 10 
billion euros ($8.57 billion) every year in money spent on Internet 
connectivity. 


Since the early 1990s, when America Online first took its service to 
consumers, the Internet has become a gold mine for direct marketers, 
according to Geller. (AOL Time Warner is the parent company of CNN.com.) 
Since then, marketing scams such as Ponzi and pyramid schemes have migrated 
from mail and newspaper advertisements to the less costly medium. And there 
may be no way to get rid of spam if governments, marketers and consumers 
don't come to a consensus on a solution. 


"I remember e-mail before there was ever marketing, when it was just a bunch 
of techies chatting online,” Geller said. 
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Hacker helps Excite@Home toughen defenses 

By Robert Lemos 

Special to CNET News.com 

May 29, 2001, 5:55 p.m. PT 

Not all hackers are bad--just ask Excite@Home. 

The company shored up its online defenses after a hacker pointed out a 

vulnerability in April that allowed access to the company's internal network 

and exposed nearly 3 million support records to the public. 

The company praised the hacker--known by the alias "Adrien Lamo"--for coming 

forward after he poked around their network. 

Lamo.contacted the company nearly two months ago after he discovered a 

server that could be used by would-be attackers to get into portions of the 

Excite@Home corporate network. Among the accessible data was a customer 

support database of users, their machine configurations and their addresses, 

Excite@Home spokeswoman Londonne Corder said. 

However, no credit card information was in the database, she stressed, and 

because of Lamo's aid, no records were accessed by others, Lanio first found 

the network vulnerability in March, she said. 

The details of the breach were first reported by security site 

SecurityFocus.com, which had been contacted by Lamo. 

Lam is “someone who tries to uncover security holes with good 

intentions--to show us where we had some security holes, so those could be 

fixed," Corder said. 

While not a first, a collaboration like Excite@Home's cooperation with a 

hacker to secure its network is rare. 

Despite the open-source movement underscoring the historic definition of 

hackers as curious--if unconventional--researchers, companies have been 
b6 -5 
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frequently leery of associating with anyone who considers themselves one. 


Yet, the Excite@Home network seems a bit more secure today because of the 
cooperation. 


“After meeting with Lamo, we took steps to further secure the corporate 
network by installing firewalls, restricting access to the network, 
implementing programs to prevent denial-of-service attacks, and adding 
hardware and software designed to detect and prevent security breaches," 
Corder said. 


to 


Wireless Privacy Legislation Coming 
By Doug Brown, Interactive Week 
May 28, 2001 5:56 AM ET 


Convincing lawmakers that cyberspace needs sweeping privacy regulations 
hasn't been an easy sell, and lobbyists and partisans on opposing sides in 
the debate have dug trenches and settled in for a long policy slugfest. 


Privacy, it turns out, is simply complicated. 


But for privacy advocates, there is hope that in one electronic 

environment - wireless - legislation could come sooner rather than later. 
Senators John Edwards, D-N.C., and Byron Dorgan, D-N.D., plan to offer the 
first legislative salvo in the wireless privacy debate sometime after the 
Memorial Day recess, which ends June 3, according to an Edwards staff 
member, 


The bill, the staff member said, will address the privacy of location 
information, data that has the potential to shower marketers with new 
selling channels but at the same time could easily infuriate consumers and 
lead to much tougher legislation. 


Because of a 1999 amendment to a bill, cell phones now must be equipped with 
technologies that reveal to law enforcement officials the locations of 

cellular phones during 911 calls. Among other things, the bill did forbid 
cellular carriers, which have access to this location information, from 

using it in any way without the explicit consent of individual cell phone 
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users, 


But as web-enabled personal digital assistants (PDAs) and cell phones merge 
into single devices and carry location-driven applications - such as 

services, for example, that will flash advertisements on a PDA when users 
pass stores having sales, or services that alert users to traffic 

conditions - privacy advocates are eager to make sure that this information 
cannot be freely distributed. The 911 amendment applies to wireless 
carriers, but it does not necessarily address applications providers, 


"The question is, what are the rules for these applications," said Ari 
Schwartz, a senior policy analyst at the Center for Democracy and 
Technology, a cyberspace civil liberties organization. "And most 
importantly, what are the rules for government and for civil cases? Imagine 
a civil case is brought against you and they have everywhere you have been. 
The technology becomes a dog tag." 


Schwartz said the legislative proposals to be aired in coming months will 
attempt to “level the playing field" between the wireless carriers and the 
application providers, so, for example, just like wireless carriers, 

application providers would have to get the consent of consumers before they 
tracks their locations. 


The wireless industry has not tried to block legislation that would require 
application providers get consumer consent before they track them or trade 
in the location information, Schwartz praised the wireless industry for 
recognizing that location information could be particularly sensitive to 
consumers. : 


Phone spam, for example, could become a major problem without legislative 
remedies. 


"Tf it's cheap for application providers to have the phones of thousands of 
people to ring, they will do it," he said, if only for a single sale. 


The industry has always been supportive of a restrictive "opt-in" scheme. 
That's where consumers must offer explicit consent before companies can use 
their personal information. “It's in the carriers interest to have customers 
carrying their phones and having their phones turned on," said Michael 
Altschul, general counsel and vice president for regulatory policy and law Meee 
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at the Cellular Telecommunications and Internet Association. “Carriers will 
be sensitive to spam." Altschul said the industry backed the 911 amendment, 
which forced the "opt-in" embrace. 


The debate about privacy, he said, is just starting to heat up now because 
most of the services that would take advantage of location information 
haven't been deployed yet. The industry has been involved with the larger 
online privacy debate, in which those advocating “opt-in" and those backing | 
"opt-out" regulatory regimes are at odds, mainly to make sure that ; 
regulations that might make sense for computers - but hot necessarily cell 

phones - don't apply to cell phones. 


"So when people are talking about various requirement and scrolling notices, : 
they recognize that unique differences that wireless and wireline devices 
have," Altschul said. "A privacy statement on an opening screen, if you are 
using a handheld device, is not an efficient or satisfactory way for the 
consumer or the industry to provide notice of privacy." 
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New York Times 4.28.03 
A New Way to Catch a Hacker 
By NICHOLAS THOMPSON 


For a computer security professional, Lance Spitzner has an unusual goal: He 
wants ill-intentioned hackers to steal more Social Security numbers and 
medical records, 


Mr. Spitzner, a former Army officer, spends his days working at Sun 
Microsystems and his evenings running the volunteer Honeynet Project, a 
group of security professionals working to track hackers. Until recently, 

the four-year-old nonprofit effort focused on building and monitoring 
honeypots — computer systems designed to be easily penetrated so that 
Honeynet volunteers can covertly scrutinize hackers’ tricks when they break 
into the systems. 


Now Mr. Spitzner, 32, is focusing his efforts on a different type of defense 
based on the insertion of "honeytokens" into real databases and systems. 


Honeytokens are pieces of seemingly enticing information that have no useful 

value. Embedded in ways so that no innocent person should accidentally 

stumble upon them, honeytokens trigger alarms when viewed, grabbed or 

downloaded. For example, a bank could insert a fake credit card number into 

its files and then set up a program called a "sniffer" on the network that ae 
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would send out an alarm if anyone touched that particular number. 


The term “honeytokens" was coined on Feb. 21 by a programmer named Augusto 
Paes de Barros who used it in an e-mail message to a list of security 
professionals. But the idea is not new. 


It dates back in computing at least to 1986, when Clifford Stoll, a 
programmer at Lawrence Berkeley National Laboratory in California, buried 
fake records for an organization called the Strategic Defense Initiative 
Network deep in his server. When intruders started downloading the records, 
and then someone sent a letter to Mr. Stoll about the phony organization, he 
and federal investigators traced the intruders to East German and Soviet 
intelligence agencies, 


Today, the use of honeytokens is not uncommon. For example, ForeScout 
Technologies, based in San Mateo, Calif., has built a commercial software 
program that tracks incidents of surreptitious reconnaissance, like port 
scans — the computer equivalent of someone turning your doorknob to see if 
it tg unlocked. The program will announce a false message of vulnerability 

to the scanner in the form of a honeytoken. It then breaks the connection if 
the hacker follows up with an attack. 


Honeytokens, like their cousins the honeypots, are based on the notion that 

if you build it, they will come. Mr. Spitzner became intrigued by the idea 

of honeypots after putting a new computer online at home and watching it get 
attacked within 15 minutes by an automatic program scanning the Internet for 
vulnerable prey. 


Many computer criminals break into systems simply for the fun and challenge. 
Others are looking to take over vulnerable systems in order to use them as 
safe houses for setting off further, more serious, attacks. Others want to 
mine credit card addresses or steal corporate secrets. According to a 2002 
report by the Computer Security Institute, 90 percent of the 500 
corporations, government agencies, financial institutions, medical 

institutions and universities surveyed detected security breaches during the 
previous year, 


Honeytokens could also be useful for national security purposes. Michael 
Vatis, director of the Institute for Security Technology Studies at 
Dartmouth University, said that the Defense Department could use them to 
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snare people seeking unauthorized information on weapons systems, For 
example, a honeytoken could be designed so that if it were downloaded and 
then taken to a different system, it would be able to contact its original 

server each time it was accessed. One way to do this would be to include 

code in the honeytoken that would automatically try to fetch a tiny image or 
some other file based on the home server, making the honeytoken “phone home" 
whenever it is opened. 


Honeytokens also can be used to track attacks from within a company by 
people who have passwords to enter the system legitimately, Pete Herzog, 
managing director of the Institute for Security and Open Methodologies, says 
that he has used honeytokens to detect when employees illicitly download 
forbidden material. For example, he has entered corporate memos with 
particular typos into private databases and then monitored company networks 
to see where those typos show up. Tracing these honeytokens, he says, often 
leads to caches of illegal materials stored on the network. 


No one believes that honeytokens can stop all cybercrime. But they could 
offer an upgrade in protection. 


Honeytokens offer another advantage: They help reduce the number of false 
positives in other cyberdefense systems. Like car alarms, intrusion 

detection systems can go of f so frequently because of accidental trespassing 
hat many security administrators ignore the warnings. Honeytokens, if 
designed correctly, should trigger alarms only if there is a malicious 

attack. 


Hackers, however, are not impressed. Adria Lamo, who gained notoriety last 
year when he claimed to have broken into the systems of a number of 
companies, including Yahoo, says he is not worried. "It's a form of 

old-school security," he says. "It will work on the people who have been to 

he old schools." 


Mr: Larne says that he only goes after information that he knows other people 
requently seek access to and that he runs credit checks to ensure that 
information he uncovers, like Social Security numbers, are real. Mr. 

Spitzner contends that it should not matter whether a hacker bothers to run 
a credit check because the alarm should ring any time the decoy record is 
accessed. 
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Hackers can also evade honeytokens by compressing and password-protecting 
the information they steal, thereby changing or hiding the data, like fake 
Social Security numbers or typos, in memos that the sniffers are searching 
for. And "phone home" honeytokens designed to trace users could be thwarted 
if opened only on computers disconnected from the Internet. 


Some experts are also worried about the possibility that using honeytokens 
could violate the federal Wiretap Act, which places limits on intercepting 
and monitoring electronic communications. Richard Salgado, senior counsel 
for the Justice Department's computer crime and intellectual property unit, 
has said that very little law governs this new area and that security 
technicians should consult first their lawyers. 


Mr. Spitzner said that he was less worried about the law than about smart 
hackers. Honeytokens cannot solve all problems, he said. “But they can make 
avery simple and powerful tool in @ security arsenal." 


Errata 


Washington Post, Saturday, April 26, 2003; Page EOL 
Blacklisted E-Mailers Sue Anti-Spam Groups 


By Jonathan Krim, Washington Post Staff Writer 


A recently formed group of e-mail marketers has opened a new front in the 
escalating war over unsolicited e-mail, suing several organizations that 
track and "blacklist" alleged spammers so that their messages will be 
rejected by Internet service networks, 


EMarketersAmerica.org, a nonprofit Florida corporation, charges that 
spam-tracking groups falsely accuse legitimate marketers of being spammers 
and ruin their businesses by blacklisting and harassing them. 


The tracking groups, which include Spews.org and Spamhaus.org, keep 
databases of information about accused spammers, publishing as much personal 
information about them as is available, 
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MCT Security Hole Put AOL, Others, In Hacker's 
Crosshairs 


&y Brian Krebs, Newsbytes 

WASHINGTON, D.C, U.S.A., 

05 Dee 2002, 2:10 PM CST 

MCI WorldCom [NASDAQ:MCIT] recently moved to secure several vulnerable portions of 
their network that allowed a researcher to obtain the keys to private network routers for 
dozens of Fortune 500 companies. 


AOL Time Wamer, Bank of America, Citicorp, Fox News Corp., JP Morgan, McDonald s, and 
Sun Microsystems - to name just a few - were among those firms whose internal systems 
information was vulnerable to compromise. 


Security researcher Adrian Lamo discovered the vulnerability after stumbling upon several 
proxy Web servers on MCI's Internet address space. The proxy allowed Lamo to gain access 
to the company’s Intranet, and to a tool that MCI technicians use to perform routine router 
maintenance for hundreds of the company's largest customers. 


After realizing the full extent of the information and access at hand, Lame contacted 
WorldCom through security intelligence firm SecurityFocus.com. 


Not only did the security hole allow Lamo to remotely manage custorrer routers, this vector 
paved the way to customer access information including router dialups, logins, and "enable" 
passwords - the administrative passwords needed to take total control of a router. 
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Such information could allow an intruder to divert network traffic for any of the affected 
companies, or disable their networks altogether. In contrast to most networks, which are 
routed publicly over the Internet, these customer networks were fully internal, running over 
private lines and address space, sometimes connecting corporate offices across coasts or 
continents. 


"It would have been pretty trivial to reset the password on any of these routers, which 
would have made it impossible for companies to perform remote maintenance on them," 
Lame. said in an interview with Newsbytes. 


"That would effectively paralyze many of the companies dependent on their network 
infrastructure, because support staff would have to be dispatched to reset each router's 
information via a live hardware procedure. It could have been a real nightmare for some of 
the biggest players in the U.S. economy." i 


The Web tool also included dial-up numbers and user/password information for routers 
serving dozens of other major companies - both domestically and abroad - including British 
Airways, Clorox, Daimler Chrysler, Dow Jones, the U.S, Department of Interior, the U.S. 
National Park Service, Ford Motor Co., Frito Lay, the Home Shopping Network, Nintendo and 
Pfizer, 


MCI Spokeswoman Jennifer Baker said the company is grateful that Lame opted to work 
with them over the weekend to correct the problem. 


"We learned on Friday that unauthorized access could be made to our administrative 
internal data network, a network that employees use to access MCI intranet sites," Baker 
said. "We immediately investigated the issue and corrected it and made sure no Worldcom 
customers were affected, and we certainly appreciated Adrian working with us so 
cooperatively over the weekend." 


Once on MCI's corporate intranet, the 20-year-old hacker was able to deconstruct most of 
the checks and balances that prevent the average employee from manipulating accounts 
and procedures on the network. Over time, he was able to make management-level 
decisions in various automated processes, such as creating, viewing and deleting employee 
records. ¢ 


"Using that information, an intruder could have intercepted and redirected e-mail for almost 
all employees, right up to the CEO, and with a bit of forethought changed the direct- 
deposit settings for any number of employees so that their paycheck ends up in an account 
in the Ukraine," said: Lartio, who provided Newsbytes with a set of partially redacted 
screenshots to document his tracks. 


"They had some very good precautions and fail-safes in place, but ultimately they were 
faced with an extraordinary situation that was never designed for someone sitting at Kinko's 
for a solid day looking at every angle he could think of," he said. 


Also buried within MCT's intranet was basic account information for other entities, including 
data and dial-up service accounts for the intelligence agencies, the MPAA, the Church of 
Scientology, and similarly diverse customers. 


The availability of such data raises chilling possibilities at a time when U.S. federal law 
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enforcement agencies have expressed growing concern that a cyber-attack on the nation's 
mast important computer systems could accompany the next terrorist strike. 


“When you have a company that many of the major players in US business rely on for 
critical services, it is beyond essential that sensitive information of this caliber be available 
only to those with a genuine business need for it," amo. added. "I started with the same 
level of access as any employee. The newest intern could have done the same thing. 


"Thankfully, WorldCom's response was extremely prompt and effective, reflecting their level 
of concern in addressing these issues. Many of the points raised are not WorldCom-specific - 
you see these patterns at countless companies of this size.” 


MCI is the latest in a string of companies Lam@ has found to be vulnerable to Web-based 
intrusion. Days after the Sept. 11 attacks, Lamo used a proxy on the Yahoo network to add 
satirical content to a story on the company's Web site about Russian programmer Dmitry 
Sklyarov, a stunt that raised public concern about the integrity of online media. 


Earlier this surnmer, Lamo alerted ExciteAtHome to similar vulnerabilities on the company's 
network that left the personal information of nearly 3 million customers and several 
thousand company employees available to even the most marginal of system crackers. 
ExciteAtHome later thanked Lamo for helping them to patch the hole. Lamo has also 
highlighted related vulnerabilities at Microsoft and America Online. 


Lamno. said most companies are so concemed about protecting their networks against typical 
cracker exploits - such as common software bugs and buffer overflows - that they typically 
overlook security on internal Web-based systems designed solely for use by employees. 


"Companies don't generally pursue this angle of insecurity, and tend not to consider that 
confidential resources might be available to anyone with a Web browser," he said. “Many of 
these companies are running intrusion detection systems that will trip alarms if they spot 
someone scanning for known exploits. But most often, normal Web traffic goes unnoticed." 


Reported by Newsbytes.com, http://www. newsbytes.com 
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GARY GYGAX FAQ 


What is happening now? 


AD&D and My Leaving TSR 
What Happened to Gygax - TSR? 
What Happened to the D&D Movie? 
Dangerous Journeys / Mythus 
New Infinities 
Divorce/Sale of Shares by Ex-Wife 


What is happening now? 


Let me pick that up from just after TSR sued and we settled the matter of the 
DANGEROUS JOURNEYS/MUTHUS RPG system. 


In 1995 I determined to turn to computer RPGs. Two were successfully optioned. 
Neither went into actual production. In one case the CEO of the producing company 
was changed, and the new president wanted to change the contract, even have 
control of the use of my name! Scratch that deal. The second one we had was near 
production, we got word that it was moving forward on a Monday, then got a call on 
the following Wednesday that the company had been sold and all projects not 
actually in production were canned. Scratch two:( 


That did it. Back to the paper game. So that's when work on the LEJENDARY 
ADVENTURE RPG system commenced in ernest. Those who visited this website in 
the past likely recall seeing the appha and beta test LA rules posted here for more 
than two years. 


In 1999, at GenCon, the publisher, Hekaforge Productions, released the 
LEJENDARY RULES FOR ALL PLAYERS in the Author's Signed Edition. In 
mid-2000 we finally managed to get all three core rules books in all three editions, 
into print--along with a LM screen and a couple of adventures. 


As of now, December 2000, I have written quite a number of works for the game 
system, some in print, some coming. These are: LEJENDARY RULES FOR ALL 
PLAYERS, LEFEND MASTER'S LORE, BEASTS OF LEJEND, LESENDARY 
EARTH World Setting, LEIENDARY PANTHEONS, KEY OF SAND sourcebook, 
MALEDICTED Sourcebook, WELL OF SHADOWS (with Jon Creffield) 
Adventure for MALEDICTED. LEIENDARY ASTEROGUES Fantastical Science 
Genre Expansion for the LA RPG (LEJEND MASTER'S LORE [two volumes] and 
LEJENDARY RULES FOR ALL PLAYERS), THE HERMIT Adventure, LIVING 
THE LEJEND Introductory Adventure Module, and one generic work--"Weyland. 
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Smith & Company GIANT FUN CATALOG of Unsuspected Mirthful Magic 
Apparatus, Entertaining Enchanted Items, and Hilarious Heka Objects you MUST 
possess." 


Iam also working on some additional projects for the lines mentioned: For the LA 
game line several adventures. For the generic line three books, one dealing with the 
criminal underclass in a fantasy world, one dealing with the socio-economic classes 
and their everyday life in a fantasy world, and one book of things and facts used for 
creating and filling the fantasy environment (the latter with Daniel Cross as co- 
author). For the LEIENDARY ASTEROGUES Fantastical Science Genre 
Expansion a campaign sourcebook. 


Meantime I am the one who reviews and develops/pre-edits all freelance 
submissidns for new products for the LA RPG system. this includes the line of 
fantasy novels set on the LEIENDARY EARTH world that Hekaforge will be 
launching soon (likely on early 2001). 


Of course I do contract work for Wizards of the Coast, most notably the fairly 
regular column, “Up on a Soapbox" appearing in DRAGON Magazine. Add to that 
some small amount of freelance writing that's called for now and then, and you will 
see I don't lack for things to do... 


Finally, yes! I do still manage to play games. I run a regular LA game campaign 
each Thursday night. It is about five years old now and going strong. I hope to add. 
another RPG campaign soon, time permitting. When odd opportunities permit, we 
play boardgames, cards, and the like too. What use in being a game designer if one 
can't play as well as create? 


Back to the top... 
Back to the homepage... 


AD&D and My Leaving TSR 


Many people are under the mistaken impression that Gary Gygax owned the 
majority interest in TSR. This is not the case, and here is the chronology that 
brought a definite minoxity shareholder status for Gary: 


1973: Gary and Don Kaye form Tactical Studies Rules, an equal partnership. 
974: Brian Blume is admitted as an equal (1/3) partner. 


976: Don dies of a heart attack in January. His wife is impossible to deal with. TSR 
Hobbies Inc. is formed, and this corporation buys out Don's widow. At this point, 
Gary controls the corporation with c. 60% of the shares. Later on, because of 
extreme cash shortages, having spent a lot to buy out Mrs. Kaye, shares of TSR are 
sold to Brian and his father, Melvin. By the fall, Gary's interest in the corporation is 
down to about 35%, and thereafter it dropped to around 30%. 


Simply put, he didn't have the money to keep up with the share purchases. Yes, he 
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placed his own interests below those of the corporation. 


1985: Gary exercises an option, and with what amounted to a handful of shares 
voted by other family members, he had ac. 50.1% majority. Later, when Brian 
Blume exercised an option he held, so as to sell those shares, and the others he and 
his brother Kevin held, to Lorraine Williams, Gary was again a minority 
shareholder. 


In this same year he sued to prevent the transfer of Blume-owned shares, arguing 
that a corporate buy-sell agreement prevented the sale to Williams. The local judge 
rules otherwise. 


Back to the top... 
Back to the homepage... 


What Happened to Gygax - TSR? 


The reader is referred also to the FAQ regarding stock ownership in TSR, as it 
explains a good deal of what happened. 


Gary was President of TSR Hobbies, Inc. when it was formed in 1976. In fiscal 1981 
the company made c. $16.5 million dollars income, with c. $4.25 pre-tax profit. At 
this time, corporate long-term debt was about equal to an average month's receipts. 
Gygax did not believe in borrowing money except for short-term needs, for projects 
that could not otherwise be produced, but that would in a relatively brief time 
generate sufficient sales to repay any loan needed to get them to market. 

The board of directors of TSR then consisted of Gary, Brian Blume, and Kevin 
Blume. The latter two voted about 60% of the outstanding shares ofstock of the 
corporation, compared to Gary's c. 30%. 


The Board decided to reorganize the company. Gary would be president, but 
"beneath" him were two other presidents: Brian Blume was "President of Creative" 
at TSR, and Kevin Blume was “President of Operations". In theory, they reported to 
and took direction from Gary. In reality, being two-thirds of the board, the Blumes 
ran TSR and Gary was boxed out. 


From that point on, Gary never ran the company, and had to fight for anything he 
thought was in the best interests of TSR. Gary wanted to keep the best quality in 
binding and products in general. He believed that authors of works should have their 
names on the works. He believed that some royalty should be paid to creative 
employees. He thought that all employees of TSR should be able to buy shares of 
stock and participate in ownership. 


All of these ideas were antithetical to the Blumes, it seems. Each of these instituted 
practices were done away with systematically. with product quality being the main 
target. Brian Blume stated publicly that he wanted “obscene profits at federally 
insured safety". 
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In 1983 Gary was instructed by the board to go out to California and set up TSR 
Entertainment Corp., a company owned by the Exempt Profit Sharing Plan of TSR. 
He did so, changing the name of the operation to Dungeons & Dragons 
Entertainment Corp. after discovering that the entertainment business community 
there would not do business with TSR. 


DDEC had the D&D Cartoon Show and several other fledgling projects underway. 
It was responsible for the closing of the deal whereby Speilberg licensed the name, 
AMAZING STORIES, from TSR. 


Gary returned to Lake Geneva in the winter of 1984 because Ti 2 was in debt and 
the bank was threatening to force it into bankruptcy. Associates of hitgalled to 
inform him that Kevin Blume was shopping the company on the ea: is said, 
out in New York City. 


By this time the Blumes had forced him to accept three "outside" directors on the 
oard. The Biumes had embraced the precepts of the now-defunct American. 

anagement Association. It was inept at promulgating even manufacturing ideals, 
in Gary's opinion. 


These three petty businessmen, two executives and a lawyer, were absolutely 
ignorant of the gaming business, and under their direction, and with the Blumes 
leading the way, TSR had accumulated $1,5 million debt that they couldn't figure 
out how to pay: amongst their ideas were the dropping of the RPGA and the sale of 
DRAGON Magazine. After some thought, Gygax presented a long letter to the 
entire board, outlining the mismanagement of TSR by Kevin Blume, and demanding 
his resignation and replacement. The board voted four to two, the Blumes 
abstaining, to remove Kevin and put in place a pro-tem president, one Richard 
Koenigs. With direction form Gary and other executives of the company, some 90 
relatives of the Blumes were removed from the payroll, various corporate owned 
and leased cars, scores of them, were gotten rid of, unused system office furniture 
owned and leased was likewise sold or returned. and two major releases were rushed 
into print--UNEARTHED ARCANA and ORIENTAL ADVENTURES. By April 


1985. the corner had been turned, and the American National Bank was no longer 
glowering and considering pulling the loan plug, so to speak. 


It must be noted that the bank was not only not helpful, they were quite obstructive 
in getting the corporation back on its feet, in Gary's opinion. Prior to the April date, 
Gygax exercised an option he held, putting many thousands of dollars into the plus 
side of the corporate ledger, and also assuming a bare majority control thus. He than 
took the office of the presidency, and told the three “outside” directors that their 
days were numbered. They had,, he said, "pontificated business" while the company 
went to near ruin. 


Not surprisingly, these three sterling individuals were aligned with Williams and the 
Blames in the dispute over whether or not the latter could sell their shares, and an 
additional 700 they secretly purchased by option exercise. to thus allow Lorraine 
Williams majority control of TSR. 
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Learning of the scheme, Gygax acquired attorneys and managed to have a 
temporary injunction granted so as to prevent the share transfer. However, in late 
1985 the county judge, who seemed unable to recognize what constituted a contract, 
as Gary says, decided in favor of the defendants. At this juncture Gygax started an 
appeal, but was both hard pressed for funds and heartily sick and tired of the mess. 
Just before the end of the year, Gygax agreed to sell his shares and other interests to 
TSR, and left the corporation in the hands of Williams. 


The capacity of Lorraine Williams to manage a game company is no longer in 
question. With a debt load of perhaps $30 million dollars or more, and facing 
bankruptcy soon, she sold out to Wizards of the Coast in 1997. That is surely a step 
in the right direction for TSR. Gary believes. Williams despised gamers, and she 
stated in his presence that they were not her 


“social equals": She also claimed she was going to show the game industry how 
business should be conducted. Some lesson. 


Clearly, Wizards of the Coast is not of that ilk, runs an excellent operation, and 
under their direction TSR fans should see a major improvement. 


Back to the top... 
Back to the homepage... 


‘What Happened to the D&D Movie? 


Even before the cartoon show was in production, there was tremendous interest from 
Holly wood in producing a movie based on AD&D. Gary was active in working with 
various agents and would-be producers and studios with an aim towards making a 
movie deal actuality. 


The story is lengthy, but the meat of it is this: 


A script from James Goldman was acquired by TSR. Several tudios were interested. 
Gary did all he could to get a major theatrical motion picture into production. Every 
proposal was vetoed by the Blumes and/or TSR board of directors. 


Gary had a meeting one morning with Sid Shineberg, then president of Universal, 
Mr. Shineberg said to Gygax, when Gary came out and asked exactly what his 
interest was, "We want to acquire you (TSR), joint venture with you, or do just 
about anything you would like in the way of getting a motion picture deal done." 


Shaking his head sadly, Gary told Mr. Shineberg that as a minority shareholder ina 
closely held corporation, he could only recommend. No trouble guessing what the 
reaction of Brian and Kevin Blume was to that so that offer ignored, and all others 
scotched by demands that were impossible, no film contract was ever signed. 


That, incidentally, pretty much spelled the doom of DDEC-~-Dungeons & Dragons 
Entertainment Corp.. of which Gary was then president. However ... 
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Back to the top... 
Back to the homepage... 


Dangerous Journeys /Mythus 


This multi-genre game system and the first game within it, the MYTHUS FRPG, 
were conceived in 1986. when New Infinities was in operation. 


Gary began writing a horror-based RPG then, and his son, Luke was the first play- 
tester. After NIPI went down the tubes, he collaborated with Mike McCulley. Mike 
was co-author of the whole underlying game system, although he hasn't ever gotten 
proper credit, because of later events. 


When large computer corporations were involved via the offices of two agents then 
representing the game system, it was decided that fantasy rather than horror must be 
the initial release in the DJ line. 


Dave Newton was contracted by Trigee to co-write the now-rush MYTHUS FRPG. 
So work began immediately, and Game Designers’ Workshop was signed up as 
publisher of the paper side of the game. 


The rest is history that's pretty weil known. TSR sued claiming all sorts of things, 
but going mainly on copyright infringement. The suit was settled. TSR paid certain 
considerable sums of money (in addition to the c. $2 million they had tossed to their 
lawyers to suppress the game), and they acquired Dj and the ancillary things such as 
JOURNEYS and MYTHIC MASTERS Magazines. 


As of june 1997, there is no indication that DJ will ever be revived, although there is 
considerable following, and also some “expansion” of the system with enthusiast- 
generated additions and rules for personal use by active groups so as to be able to 
continue play in other genres, Gary is told. 


To the best of his knowledge and belief, the suit was not the proximate cause of the 
eventual demise of GDW. In fact, under the settlement, they paid none of the legal 
fees for defense against TSR’s claims, and TSR purchased remaining inventory from 
GDW. 


Back to the top... 
Back to the homepage... 


New Infinities 

Gary was never an employee of New Infinities Productions, Inc. He was a big 
investor, and a member of the board, but he did not hold any office in the 
corporation. 

The one who formed it assured Gary that venture capital to the tune of up to $2 
million was available. With credentials including the Wharton School of Business, 


and face-to-face meetings with attorneys, accounts, and banks--and a seemingly 
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barely-missed meeting with the investment people, Gary agreed. 


The end of the tale is that there were never any venture capitalists on tap, it seems. 
When a demand was made to bring the money in, Forest Baker tendered his 
resignation and in no time NIPI was down the tubes. 


Gary was the major investor, and he lost by far the greatest amount of money in the | 
deal. However, he apologizes to all the others who, on the strength of his 
participation likewise invested and lost money in the concern. lt was a matter of too : 
many people taking large salaries out of NIPI while product was lacking to support 

such excess. 


Had Gary been able to write about ten times faster, then perhaps it would have 
succeeded. As it was, the five Gord the Rogue books were ail paperback best sellers 
on the B. Dalton and/or Waldenbooks lists, but it wasn’t enough. Royalties due were 
also mostly not paid. 


Back to the top... 
Back to the homepage... 


Divorce/Sales of Stock by Ex-Wife 


Yes indeed. At the same time Gary was attempting to prevent the sale by Brian and 
Kevin Blume of controlling interest shares of TSR to Lorraine Williams, he was in 
the middle of a divorce. 


It is true that his now ex-wife did plan to demand half of his stock holdings in the 
divorce, and as she was so doing she was in contact with Williams, attempting to get 
her to agree to buy them at a very high price. 


That is more than enough about that. Talk about wretches! 


Back to the top... 
Back to the homepage... 
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Interview 
with Gary 
Gygax, part 
1 of 3 


by Scott Lynch 
May 1, 2001 


Editor's Introduction 
I selected Mr. Gygax 
as my first interview 
‘subject for four major 
teasons: 


1. Name recognition, 
baby; 


2. [knew that 
mentioning his name in 
my intro piece would 
generate a flurry of 
comments, and | reaily 
wanted to see what the 
reaction of readers 
would be; 


3. Gygax is now 62, 
and speaking frankly, 
he’s not going to be 
around forever; and 


4. While surfing various 
interviews and web 
commentaries on 
gygax and his work, | 
became alarmed at the 
general acceptance of 
rumor and hearsay 
governing his 
reputation, "Gygax- 
trashing” was a 
widespread pastime. It 
was taken for granted 
that he was a 
“dinosaur,” that he was 


Birthplace: Chicago, Illinois 
Date of Birth: July 27, 1938 
Current Residence: Lake 
Geneva, Wisconsin 
Immediate Family: Wife 
Gail, son Alex at home, six 
other children grown and on 
their own: Ernie, Elise, Heidi, 
Cindy, and Luke 

Pet: One cat, Nema. 
Favorite Book(s): Too 
many to possibly list here! 
Jack Vance is my favorite 
author in general, though. 
Favorite Films: Lots of 
these- ranging from The 
Third Manand The Deep, 
Enter the Dragon,and The 
Seven Samurai,and 
including The Longest Day, 
Alien,and Zardoz.| know I've 
missed at least two, but... 
Favorite Musicians: | listen 
mostly to classical, Spanish 
guitar, jazz, and some blues 
too. Of composers, | am 
drawn to Mozart and 
Beethoven. Segovia surely 
was master of the guitar, 
and the "modern" jazz 
musicians are my favorites-- 
Parker, Davis, Gillespie, 
Hinton, Rich, Anita O'Day, 
Billie Holliday, Stan Kenton-- 
all that lot. As to blues, well 
all the 1940s and 50s 
performers are fine by me, 
from Joe Turner and BB 
King to Leadbelly and Big 
Momma Thornton. 

Favorite Beverages: Coffee 
in the AM, iced tea, a 
Gibson before dinner, a 
geod Bordeaux with that 
meal, Armagnac after. A 
cool glass of ale (Samuel 
Adams is fine) just about 
anytime in between. 
Favorite Foods: Most any 
from the top cuisines- 
(Northern) Italian topping the 
list, then Chinese, French, 
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no longer “relevant.” 


I pondered what it 
meant to be “relevant™ 
as I composed my 
solicitation letter to Mr. 
Gygax in November of 
last year. Several 
associates warned me 
that he was a crotchety 
old throwback fo the 
Paleolithic era who 
would bite my head off 
as soon as throw a 
sharp glance in my 
direction. To my 
surprise, he agreed to 
@ pretty rigorous 
interrogation and even 
wound up inviting me 
to stop by if! ever pass 
through Lake Geneva. 


I completed a 39- 
question interview with 
him and whittled a few 
dull and superfiuous. 
questions out. The final 
draft was just a little 
under 10,000 words, 
divided into three 
sections. Although the 
early portion of the 
interview clearly 
reveals that this is my 
first time doing any 
such thing, | believe 
that the affair became 
much more lively as it 
evolved and | gained a 
little confidence in my 
Job. 
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and Hungarian. | like to be a 
gastronome when I'm 
somewhere that there are 
better restaurants. Not much 
in that vein hereabouts... 
Other Interests: You mean 
besides gaming and my 
family? Football, history, and 
fishing when | can get away 
from work likely top the list. 
Seems there's so much to 
be interested in it's hard to 
pin down. 


RPGNet: You've been active in'the gaming industry for three decades now. Why should anyone 
still care what Gary Gygax has to say about anything? 


Gary: If | were a sports figure, 1 would agree that age might affect performance. 


While | might say that seeing that Beethoven wrote eight symphonies over many years of time, 
and why be interested in a ninth one, I'll refrain. As itis, | believe that after more than 30 years as 
a game hobbyist, fan, and author, the experience gained over those many years enables me to 
bring something new and different fo the table with each successive design. 


In short, no “Johnny One-Note” me! 


As an aside, there is also a certain repute that is attached to the “Gary Gygax" whatever. Now, a 
few think it less than sterling. From where | sit, recalling a standing ovation from a packed 
audience at GenCon 32 (even though that made me quite uncomfortable, it really impressed me), 
the press | get, the thousands of communications | receive thanking me for my work, the answer 
to the last part of your query is pretty easy to answer. If someone doesn't care what | have to say 
about something, I'll sic my fans on’em! 


RPGNet: So, just how long and hard are you working at 62, in contrast with yourself at 50 or at 
407 


Gary: There is no difference in the time | put into game-related work now, in my 60s, than that of 
my 50s or even 40s. Of course, now | am spending more time with e-mail than | did back then 
managing business maiters. In fact, | have to fight to get time to do research these days, 
something that in past times was not so much a problem. 


RPGNet: What are the contents of one of your typical workdays? 


Gary: My usual workday here begins sometime around 6 AM, maybe 7 AM or so if there's 
something particularly interesting on C-Span. Then | work on through until around 6 PM or so, 
usually a bit later if | start later than 6 AM. The exception is on Thursday, RPG campaign day! 
Then | close down at 5, eat an early dinner, and am ready to play by 6:30 in the evening. 


By the way, | keep that schedule at least six days a week, sometimes seven, but not during 
football season. 


RPGNet: And where does all that effort go? What projects are in the oven for you in the next 
twelve months or so? 


GARY: Whew! That's a tall order, and I'll have to guess at it a bit, because the release schedule 
is a bit fluid. Here goes in regards fo majorwork only: 
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Awaiting release, in likely order of publication: 


Lejendary Adventure, Lejendary Earth World Setting; 
Key of Sand,Lejendary Earth sourcebook; 

Lejendary Pantheonssourcebook; 
Maledicted,Lejendary Earth sourcebook; 

Weill of Shadows,Maledicted adventure; 

The Hermit,adventure; 


For a yet untitled generic line of GM-aid books, possibly "Gygaxian Fantasy:" 
The Weyland Smith Catalogue("Joke" magic items); 
in final stages-of polish before being turned over for editing: 


LA Game Lejendary AsteroguesRules, genre expansion; 
ditto Lejend Master's books, 2 volumes; 


For a that as-yet untitled generic line of GM-aid books: 

The Canting Crew; 

in process of design, near completion: 

Lejendary AsteroguesKowloon Wharf sourcebook and adventure; 
Working projects: 

For that as-yet untitled generic line of GM-aid books: 


Everyday Life in a Fantasy World; 

Fantastic Facts & Things Lists(with Daniel H. Cross); 
Lejendary Adventure: Lost Island Sourcebookand adventure (with co-designers); 
dittoThe Emerald Domeadventure. | 


That's it. 


RPGNet: Ack. 


Gary: Of course this ignores various short projects such as the monthly essay for the 
Dragon,Magazine column, an adventure that will be coming soon inGame Tradermagazine from 
Alliance Distributors, an introduction te a great D20 fantasy product that Swords & Sorcery 
Studios will release this year, etc. The same with a few other things such as my editorial and 
development work on the freelance submissions that come in to Hekaforge, and my work on the 
line of special adventure modules we are in process of creating and publishing for LA game fans 
who will use them in giving in-store demos- a line of special, short adventures not commercially 
available. 


RPGNet: Do you have any high-tech pipe dreams for the next few years? Is there an emerging 
technology or an unreleased technology that you're hungry to put to use in some never-before- 
seen format? Or are you a meat and potatoes man to the last? 


Gary: This is a difficult question to answer. | am more a dreamer than a technical guy. Of course 
| am eagerly awaiting computers that have audio and video capacity so as to make online RPG 
activity more like a group of RPGers actually meeting in person to play. To me that doesn't seem 
high-tech at all, just a matter of time. 


Currently, | manage to resist getting caught up in computer game play. Knowing | have a great 
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deal of work do do in a relatively short time, to start playing an electronic game is to kiss that 
responsibility goodbye. | really do fovegames of this sort, and if | begin, | won't stop playing until | 
have exhausted the potential of the offering. | have no games at all on my computer, even 
Solitaire has been trashed from memory. All that would just have to go by the boards if a game 
such as | described above were available. That would be just too much to resist. In fact, the very 
thought is what keeps me working so hard now- get the creative stuff out, and then | can "retire" 
and play games instead of designing and developing them. 


"| converted a plastic stegosaurus into a pretty fair 
dragon, as there were no models of them around in 
those days.” 


RPGNet: Let's chat a bit about that little fantasy RPG you were involved with. Dungeons & 
Dragonsis said to have evolved from a set of medieval miniature rules called Chainmail.What, 
exacily, was Chainmail?Was it a commercial project that enjoyed a fair print run, or was ita 
hobby project that evolved around a local audience? 


Gary: Back in around 1968, Jeff Perren became a member of the Lake Geneva Tactical Studies 
Association. He brought his 1:20 (ohe figure on the table equals 20 men) medieval military 
miniatures rules to us, rules he had written mainly for use with his Hauser Elastolin 40 mm 
figurines. As | happened to be a fan of the period and the figures, what a boon that was! It didn't 
hurt that I really liked Jeff's rules too. With his permission, | expanded his two pages to a longer 
treatment, and those were published around 1969 in the IFWs monthly magazine as the "LGTSA 
Medieval Military Miniatures Rules." 


That was just the beginning of things, of course. Because | was, and am stili, a great medieval 
history and gaming buff, | added more to the original base. First | did a little “Jousting” rules set, 
next added a "Man-for-Man" section to the work, that being a new rules treatment for when one 
figure on the table represented one man in combat, not 20. The LGTSA then played a lot of such 
games on the weekend-long game sessions held in my basement where the big sand table 
stood. 


Not long after that, as the members began to get tired of medieval games, and | wasn't, | decided 
to add fantasy elements to the mix, such as a dragon that had a fire-breath weapon, a “hero” that 
was worth four normal warriors, a wizard who could cast fireballs (the range and hit diameter of a 
large catapult) and lightning bolts (the range and hit area of a cannon), and so forth. | converted a 
plastic stegosaurus into a pretty fair dragon, as there were no madels of them around in those 
days. A 70 mm Elastolin Viking figure, with doll's hair glued to its head, and a club made from a 
kitchen match and auto body putty, and painted in shades of blue for skin color made a fearsome 
giant figure. | haunted the dime stores looking for potential additions and eventually found figures 
to represent ogres, elementais, etc. The players fovedthe new game, and soon we had twenty or 
more players showing up for every session. 


Guidon Games hired me as its Editor-in-Chief for a new game rules and games line it was about 
to publish. | put all of the rules mentioned above together into a single book, named it 
Chainmail,and it was published by Guidon in 1971. As far as | know, Chainmailwas the best- 
selling product that Guidon had. Guidon went out of business in 1974, and at that time TSR 
acquired the rights ta Chainmail. TSR published it for several years, from around 1974 through 
1978 or so. 


"When my youngest daughter, Cindy, added her 
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eager approval to the combination of "Dungeon" 
and “Dragon," that confirmed my choice..." 


RPGNet: You and Dave Ameson are both generally lauded as the "creators of Dungeons & 
Dragons'yet clear reference to the role you each played in its genesis is hard to come by. 
Ameson's website, www.castieblackmoor.com, states that Ameson conceived of a proto- 
roleplaying campaign set in a place called Castle Blackmoor, using a modified form of your 
Chainmailrules, and was invited to Lake Geneva in 1972 to demonsirate it for you and some 
friends. 


Gary: That's essentially correct. Dave was running a campaign using the Chainmaiirules, a 
variant that sounded fascinating. So he and Dave Megary came down from the Twin.Cities to my 
place in Lake Geneva to do some gaming. Dave Megary brought his game, Dungeon! for me to 
have a look at. 


RPGNet: Arneson further says that a correspondence grew between the two of you in the wake 
of that visit, and you reworked Arneson's reworking of your own rules into what would eventually 
become Dungeons & Dragons. {f your account and Dave's account are merged, it seems that you 
evolved the heroic fantasy batile game from Chainmail, he evalved the small-party exploration 
game from the same rules, and the two flavors bled together with a heavy re-write of existing 
rules to become Dungeons & Dragons.|s this an accurate chronology of events as you remember | 
them? j 


Gary: Well sorta... 


Dave Arneson and | had already been working on various miniatures rules, such as the Don't 
Give Up the Shiprules (Arneson, Gygax, and Carr) that were eventually published by Tactical 
Studies Rules. We made contact by mail, then personally at a GenCon before his visit to Lake 
Geneva. Between Dave Arneson's modifications of the ChainmaifFantasy Supplement figures, 
giving “Heroes” four hit dice rather than requiring four simultaneous hits to kill them, and 
"Superheroes" eight hit dice, and Dave Megary's boardgame based on a dungeon adventure with 
Chainmail Wizard", “Superhero”, "Hero", and "Elf' competing, exploring, slaying monsters, and 
gaining treasure by so doing, the special nature of what could be done with the rules bases. 
became evident to me. 


Dave Arneson never did furnish any solid rules for me to use in devising a new game, although 
he (and collaterally Dave Megary) certainly did provide solid ideas though. So, as Dave Arneson 
has said in an.interview that was published in Different Worldsmagazine #3), | devised and wrote 
the whole of the work that became the Dungeons & Dragonsgame. 


The initial draft was only 50 pages long, written and mailed out to about two dozen fellow 
members of the International Federation of Wargaming in the late winter of 1972. Thereafter, as 
play-testing in Lake Geneva proceeded (at a happily furious pace}, and responses from the first 
draft recipients came pouring in, | revised and expanded the manuscript to 150 pages in length. 
That's essentially what was published in 1974 as the three D&D game booklets. 


As an aside, | must laugh at some comment | saw about the name for the game being "The 
Fantasy Game" until someone "wised me up". Having been employed as an Editor-in-Chief, 
selecting what game rules and games would be published by Guidon Games since the beginning 
of 1971, | was well aware of the need to use a working title, the need for some caution in regards 
using the actual name for a a projected game release. So that’s the reason for that bland one on 
the draft works. 


By the time the second draft was circulating amongst the testers, | had decided upon the actual 
title to be used, D&D. This was done by making a list of likely words. | then asked the members of 
my gaming group, and my family, to choose that one, or that combination of words, that they 
found best suited.the game, and appealed most. When my youngest daughter, Cindy, added her 
eager approval to the combination of "Dungeon" and "Dragon," that confirmed my choice, and 
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that of most of the others too. So the Dungeons & Dragonstitle was born. {As the creator of the 
IFW Castle & Crusade Society, | was pleased. 


“As for competition for D&D, there was never any 
serious competitor. For a fact, there still isn't a real 
competitor for the new D&D, including my own 
new fantasy RPG..." 


RPGNet: Can you tell us anything about developments in roleplaying after 1973-74 that branched 
out from the magical fantasy roots you and your contemporaries put down? When did your own 
associates start to experiment with, say, science fiction or western settings? And when did such 
efforts start to reach commercial publication at TSR and other companies? 


Gary: Whew! Another multi-part question. Think I'd better break it up into manageable chunks: 


The D&D game was released in January of 1974. By then Don Kaye and | were “noodling” about 
a Western RPG, for he was a big fan of that genre. Sadly, Don died in January of 1976. Brian | 
Blume took over for Don, and so the Boot Hiligame was authored thus, Blume and Gygax. So, to i 
the root of the question, that began development early in 1974. | 


Around 1975 M.A.R, Barker sent us the manuscript for his Empire of the Petal ThroneRPG, the 
tules inspired by those for D&D, of course. {f was a most compelling environment, and we soon 
published it. Around this same time Brian Blume and | began working on Warriors of Mars,a sort 
of "Barsoomian" fantasy-science RPG. It too was published by TSR, but then because of 
pressure from the Burroughs’ Estate the product was not reprinted. 


| believe that it was 1975 when the Game Designer's Workshop RP game, En Garde,was 
published. That, to my knowledge, was the first of competing RPGs. Most of us at TSR 
purchased and played it, i009. Then, as time passed, Star Frontiers, Metamorphosis Alpha(one of 
my very favorite RPGs, later revised and released as Gamma World), Gangbusters,and Top 
Secret(in that order | think} were released by TSR. | assisted in development and/or play-testing 
with all of those titles. 


As for competition for D&D, there was never any serious competitor. For a fact, there still isn't a 
real competitor for the new D&D, including my own new fantasy RPG... but maybe in time that will 
change. 


When GDW released Traveller, we were all pretty enthused, for we saw it as broadening the 
interest for the RPG by covering science fiction. On the release dates of other companies’ RPG, | 
am not a reliable source- I'm barely that for most of the TSR line other than D&D. What copies of 
the old products | have, and that's astonishingly few, are sealed away for posterity, so | can't 
check the copyright dates. Sorry. 


Next: The memory of Donald Kaye, fantasy archetypes, and game design philosophy. 


‘What do you think? 


Go to forum! 
Forum List | Goto Top | New Topic | View Threads | Search 
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American roleplayers (1) new Rockwell 05-30-2002 05:08 “ 05-30-20 
Re-release is good (2) new Blu 05-23-2002 12:38 05-24-20 
Nice interview. (3) new Greg Basich 04-24-2002 09:12 08-24-20 
Thanks, Gareth. (1) new Keith Burkhead 04-24-2002 08:14 04-24-20 
Spot ont (1) new Matt M 04-20-2002 04:48 04-20-20 ] 
Very nice work (7) new Steve D 04-19-2002 04:31 04-23-20 
Dejavu (1) new Scarecrow 04-19-2002 01:31 04-19-20 
(hate game fiction too (1) new Phill Calle 04-18-2002 20:10 04-18-20 
Great job} (1) new Cedric Chin 03-31-2002 17:08 03-31-20 
That, and $1.298, will get ya a cuppa (14) new Sam Chupp 03-28-2002 06:46 04-24-20 
Amuse me some more! (1)new KC 03-28-2002 02:34 03-28-20 
Marketing (4) new Ken Burnside 03-27-2002 05:44 03-28-20 
Freeport Crisis (4) new KC 03-24-2002 01:26 03-28-20 
What about the rest..? (2) new Adam Williams 03-23-2002 19:42 03-24-20 
What do [ think? (6) new Chris Camfield 03-23-2002 08:15 03-25-20 
Onty on RPGnet... (6) new Gareth-Michae!l Skarka 02-12-2002 09:08 03-26-20 
An Interview (4) new Dan 02-11-2002 13:56 03-24-20 
That was really ... @ new S. John Ross 02-08-2002 21:06 02-12-20 
Tim Powers? Where?? (7) new Valandil 01-20-2002 23:39 05-30-20 
Catch22 (1) new Rusty 01-20-2002 20:19 01-20-20 
Tim Powers and Unknown Armies (4) new Mitch 01-19-2002 10:43 09-27-20 
The problems | can see... (7) new Mark Green 01-04-2002 04:33 01-10-20 
You know what's a cool thing to put on web pages? (6) newJeff Freeman 12-09-2001 02:41 01-04-20 
Credit Where Its Due ©) new Chris Pramas 12-05-2001 15:05 12-05-20 
Acceptance Speech [Plus] (a) new S. John Ross 12-05-2001 12:31 12-07-20 
Cool! (1) new Chris Camfield 12-05-2001 12:18 12-05-20 
Heh...now | know why | suck at business... (2) new Steve D 10-18-2001 01:06 01-22-20 
Those wouldn't be _MY_ top 5... (1) new GAZZA 10-15-2001 01:17 10-15-20 
Not to belittle the tragedy... (11) new Rygar 10-01-2001 08:07 42-07-20 
Not sure what to say ... (1) new Gordon C. Landis 09-28-2001 00:01 09-28-20 
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